> Von: Werner Koch [mailto:w...@gnupg.org] > > On Mon, 3 Sep 2018 19:25, pe...@digitalbrains.com said: > > > It could be that recently an option was added to check a signature by a > > certificate in a file, but in general you need to import a certificate > > No, that is nlot the case. We only added the option -f to encrypt to a > key taken from a file. > > For verification against a single key or a set of keys use the gpgv > tool: > > gpgv --keyring FILEWITHKEYS FILETOCHECK [DATAFILE]
Thanks for your helpful reply, that seems to be exactly the command I should use. But it seems it is suffering from the same "[GNUPG:] UNEXPECTED 0" issue. /usr/bin/gpgv --status-fd 2 --homedir /proc/self/fd/nonexistent --keyring key.pub data.gpg [GNUPG:] UNEXPECTED 0 gpgv: verify signatures failed: Unexpected error Could it be, that "--throw-keyids" at signature creation to then avoid XKeyscore-traffic-analysis [1] is not compatible with signature verification? I would have expected to work exactly the same way as with "--decrypt": without a key-ID all keys are tested. Regards, Roman [1] https://motherboard.vice.com/en_us/article/ezpxan/pssst-your-pgp-is-leaking _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
