linux clam-av sig problem

[tiffini]

Hi,

I downloaded the clamav and the clam av sig file and see a problem.


I ran > gpg --keyserver random.sks.keyserver.penguin.de --recv-keys 985A444B


Then I verified the signature of the code. I would like the see a trusted sig.

gpg --verify clamav-0.91.2.tar.gz.sig
gpg: Signature made Mon 20 Aug 2007 06:21:05 PM CDT using DSA key ID 985A444B
gpg: Good signature from "Tomasz Kojm <[email protected]>"
gpg: aka "Tomasz Kojm <[email protected]>"
gpg: aka "Tomasz Kojm <[email protected]>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: 0DCA 5A08 407D 5288 279D B434 5482 2DC8 985A 444B

Any advice would be appreciated

tif

 

[David W. Hodgins]

Any advice would be appreciated

You have to sign the key yourself, to inform gpg, that you trust that you've
got the right key.

Regards, Dave Hodgins