GPG signatures are set by the sender to prove the message is originating from the sender and is unchanged. It’s signed with the private key and verified with the public key.
It is in no way a method to verify if the information is correct or rubbish. I can tell you the earth is flat and sign it, but all you know on verifying the signature is that the info was unaltered, not if it’s correct or not.
GPG signatures are set by the sender to prove the message is originating from the sender and is unchanged. It’s signed with the private key and verified with the public key.
It is in no way a method to verify if the information is correct or rubbish. I can tell you the earth is flat and sign it, but all you know on verifying the signature is that the info was unaltered, not if it’s correct or not.