[Pkg-privacy-maintainers] Bug#852732: torbrowser-launcher: sig verification failed: also for first time download

Gregor Zattler telegraph at gmx.net
Fri Jan 27 14:46:03 UTC 2017

* Gregor Zattler <telegraph at gmx.net> [27. Jan. 2017]:
> Package: torbrowser-launcher
> Version: 0.2.6-3
> Followup-For: Bug #852732
> Dear Maintainer,
> I have the very same problem as Sebastian Niehaus with
> torbrowser-launcher from debian testing while trying to download
> tbb for the very first time.
> Most probably the problem is with the files on the tor projects
> server but ATM there is nothing at the tor mailinglist archives about
> the problem.

Nope.  The signature file matches the downloaded archive iff one
has the needed key.  Due to a configuration error gpg2 was not
able to download keys.  I fixed this, downloaded the key and
*manually* and successfully verified the downloaded archive.

But when I use torbrowser-launcher it still insists that the
signature verification fails.

This is also the case with a minimal gpg.conf:

keyserver pool.sks-keyservers.net

which allows for receiving keys it still complains about the
signature verification.

The error message is the same with no gpg.conf at all although
gpg then is not able to download the key.  Which is at least

Ciao, Gregor
 -... --- .-. . -.. ..--.. ...-.-

More information about the Pkg-privacy-maintainers mailing list