Шукати в статтях підтримки

Остерігайтеся нападів зловмисників. Mozilla ніколи не просить вас зателефонувати, надіслати номер телефону у повідомленні або поділитися з кимось особистими даними. Будь ласка, повідомте про підозрілі дії за допомогою меню “Повідомити про зловживання”

Докладніше

Ця тема перенесена в архів. Якщо вам потрібна допомога, запитайте.

Unable to Verify gpg keys for non-stub package "Firefox Setup 92.0b9.exe"

  • 1 відповідь
  • 1 має цю проблему
  • 13 переглядів
  • Остання відповідь від cor-el

more options

Hello,

I want to download non-stub firefox installer: http://download-installer.cdn.mozilla.net/pub/firefox/releases/92.0b9/win64/en-US/

I understand the signing gpg key is: https://download-installer.cdn.mozilla.net/pub/firefox/releases/92.0b9/KEY which has:

first line: mQINBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCz last 2 lines: IxxNj5bPAQy6dRKB1TxlWr4X0pUWxuqBeObPoHS9j0ysxKPruw== =81zK

I have been unable to verify the gpg key either through gpg4win or http directories:

with gpg4win I get the error:

PS C:\> gpg --auto-key-locate nodefault,wkd --locate-keys release@mozilla.org gpg: WARNING: unacceptable HTTP redirect from server was cleaned up gpg: error retrieving 'release@mozilla.org' via WKD: Syntax error in URI gpg: error reading key: Syntax error in URI

@keys.openpgp.org entry https://keys.openpgp.org/vks/v1/by-fingerprint/14F26682D0916CDD81E37B6D61B7B526D98F0353 which has

first line: xsFNBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCz last 2 lines: yf0CCuL/UQTRrW0SrKOV/RZHuvdpVYK3YIAyd49kKjLk6O9awFQy7cXq3PhjatBi =Uufg

@https://pgp.mit.edu I got entry https://pgp.mit.edu/pks/lookup?op=get&fingerprint=on&search=0x61B7B526D98F0353 I got entry:

first line: mQINBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCzPQpH6BoA last 2 lines: QKVzkslJWv5f71Fg3CU6fiSJDMqy1W2X+p+kOjDpCwaYD0nu/xW30kSDTnZERxlmYA== =PqfZ

And now, searching https://pgp.mit.edu for release@mozilla.org or releases@mozilla.org returns:

   Proxy Error
   The proxy server received an invalid response from an upstream server.
   The proxy server could not handle the request GET /pks/lookup.
   Reason: Error reading from remote server


Could I get some feedback?

Txs

Hello, I want to download non-stub firefox installer: http://download-installer.cdn.mozilla.net/pub/firefox/releases/92.0b9/win64/en-US/ I understand the signing gpg key is: https://download-installer.cdn.mozilla.net/pub/firefox/releases/92.0b9/KEY which has: '''first line:''' mQINBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCz '''last 2 lines:''' IxxNj5bPAQy6dRKB1TxlWr4X0pUWxuqBeObPoHS9j0ysxKPruw== =81zK I have been unable to verify the gpg key either through gpg4win or http directories: with gpg4win I get the error: PS C:\> gpg --auto-key-locate nodefault,wkd --locate-keys release@mozilla.org gpg: WARNING: unacceptable HTTP redirect from server was cleaned up gpg: error retrieving 'release@mozilla.org' via WKD: Syntax error in URI gpg: error reading key: Syntax error in URI @keys.openpgp.org entry https://keys.openpgp.org/vks/v1/by-fingerprint/14F26682D0916CDD81E37B6D61B7B526D98F0353 which has '''first line:''' xsFNBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCz '''last 2 lines:''' yf0CCuL/UQTRrW0SrKOV/RZHuvdpVYK3YIAyd49kKjLk6O9awFQy7cXq3PhjatBi =Uufg @https://pgp.mit.edu I got entry https://pgp.mit.edu/pks/lookup?op=get&fingerprint=on&search=0x61B7B526D98F0353 I got entry: '''first line:''' mQINBFWpQAQBEAC+9wVlwGLy8ILCybLesuB3KkHHK+Yt1F1PJaI30X448ttGzxCzPQpH6BoA '''last 2 lines:''' QKVzkslJWv5f71Fg3CU6fiSJDMqy1W2X+p+kOjDpCwaYD0nu/xW30kSDTnZERxlmYA== =PqfZ And now, searching https://pgp.mit.edu for release@mozilla.org or releases@mozilla.org returns: '''Proxy Error''' The proxy server received an invalid response from an upstream server. The proxy server could not handle the request GET /pks/lookup. Reason: Error reading from remote server Could I get some feedback? Txs

Змінено u20210512

Усі відповіді (1)

more options

The KEY file is used to verify the .asc files that can be used to verify the SHA256 and SHA512 files that contain the actual sums for all releases.

Змінено cor-el