Downloading ISO and verifying signature not giving result shown in instructions
Originally created by @brokenst on #15697 (Redmine)
Instructions for verifying an ISO manually through OpenPGP in Tails say this:
After the verification finishes, you should see a notification that the signature is good:
tails-amd64-3.3.iso: Good Signature
Signed by on …
When doing it exactly as described by the instructions, I get this output:
tails-amd64-3.8.iso: Untrusted Valid Signature
Valid but unstrusted signature by on …
So, someone doing the verification as described by the instructions has to assume that the iso is in some way malicious since it does have an untrusted signature.
Is the documentation wrong, or is there a problem with the ISO?
Feature Branch: 2dc4594d