Skip to main content
Start a Conversation

Unsolved

This post is more than 5 years old

dolliak

4 Posts

12666

September 4th, 2009 19:00

Problem verifying BIOS signature

I am having problem verifying BIOS signature.
I get this warning:
gpg: WARNING: This key is not certified with a trusted signature!

I think problem lies somewhere with this line:
Command> sign
gpg: no default secret key: secret key not available

What am I supposed to do to get rid of that warning?
----------------------------------------------------------

Here is exactly what I did:

# gpg --import linux-security-publickey.txt

gpg: directory `/root/.gnupg' created
gpg: new configuration file `/root/.gnupg/gpg.conf' created
gpg: WARNING: options in `/root/.gnupg/gpg.conf' are not yet active during this run
gpg: keyring `/root/.gnupg/secring.gpg' created
gpg: keyring `/root/.gnupg/pubring.gpg' created
gpg: /root/.gnupg/trustdb.gpg: trustdb created
gpg: key 23B66A9D: public key "Dell, Inc. (Product Group) " imported
gpg: Total number processed: 1
gpg:               imported: 1



# gpg --edit-key 23B66A9D

gpg (GnuPG) 1.4.5; Copyright (C) 2006 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.


pub  1024D/23B66A9D  created: 2001-04-16  expires: never       usage: SC 
                     trust: unknown       validity: unknown
sub  1024g/10C11901  created: 2001-04-16  expires: never       usage: E  
[ unknown] (1). Dell, Inc. (Product Group)

Command> fpr
pub   1024D/23B66A9D 2001-04-16 Dell, Inc. (Product Group)
 Primary key fingerprint: 4172 E2CE 955A 1776 A5E6  1BB7 CA77 951D 23B6 6A9D

Command> sign
gpg: no default secret key: secret key not available

Command> quit


# gpg --verify PE2950_BIOS_LX_2.6.1.BIN.sign PE2950_BIOS_LX_2.6.1.BIN

gpg: Signature made Thu 18 Jun 2009 04:39:07 PM CDT using DSA key ID 23B66A9D
gpg: Good signature from "Dell, Inc. (Product Group) "
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: 4172 E2CE 955A 1776 A5E6  1BB7 CA77 951D 23B6 6A9D

dolliak

4 Posts

September 5th, 2009 09:00

Yep, I forgot

# gpg --gen-key

Kristian Kirilov

1 Message

September 19th, 2019 04:00

Hello, I have exactly the same problem. I expect to be able to verify the signature, but maybe I'm missing something: [root@fedora30 Dell_SSD_Upgrade]# gpg --verify Express-Flash-PCIe-SSD_Firmware_NMDM2_LN64_1.1.2_A03.BIN.sign Express-Flash-PCIe-SSD_Firmware_NMDM2_LN64_1.1.2_A03.BIN gpg: Signature made 19.04.2019 (пт) 1:12:30 EEST gpg: using DSA key 756BA70B1019CED6 gpg: Can't check signature: No public key [root@fedora30 Dell_SSD_Upgrade]#

Was this post helpful?

View All

No Events found!

Top