Hi, On 18/04/2020 00:41, Jonathan K. Bullard wrote: > Hi, > > On Fri, Apr 17, 2020 at 5:35 PM Gert Doering <g...@greenie.muc.de> wrote: >> >> ... the new subkeys are just a few weeks old, so we need to publish >> a new key bundle with the new subkeys. > > So until a new security-keys-2020.asc (or whatever you will call it) > is published on the OpenVPN website, I can't verify the download? > > Of course, if the download was compromised, the website probably was, > so any key published on it is, too. > > Sigh.
If the updated key was pushed to the keyserver (it should), you can delete and re-fetch it from the keyserver directly. Regards, -- Antonio Quartulli _______________________________________________ Openvpn-devel mailing list Openvpn-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-devel
