Downloading ISO and verifying signature not giving result shown in instructions

Instructions for verifying an ISO manually through OpenPGP in Tails say this:

After the verification finishes, you should see a notification that the signature is good:

tails-amd64-3.3.iso: Good Signature
Signed by on …

When doing it exactly as described by the instructions, I get this output:

tails-amd64-3.8.iso: Untrusted Valid Signature
Valid but unstrusted signature by on …

So, someone doing the verification as described by the instructions has to assume that the iso is in some way malicious since it does have an untrusted signature.

Is the documentation wrong, or is there a problem with the ISO?

(sajolida)

Feature Branch: 2dc4594d17

Attachments

Related issues

Related to #15710
Related to #11039
Blocks #16711

Original created by @brokenst on 15697 (Redmine)

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information