Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

OpenPGP digital signature unverified

  • 1 reply
  • 0 have this problem
  • 8 views
  • Last reply by Richard

more options

I have an external PGP key on a Yubikey that has three identities (e-mail addresses) on it.

I can send an e-mail from one of these identities to another. If I encrypt the e-mail the other mailbox will be able to decrypt it and verify the signature (of course). If I only sign the e-mail, however, the other mailbox will complain, "Invalid Digital Signature". The 'sent' folder of the sender will show the e-mail as correctly signed even when it was only signed and not encrypted.

Any ideas what is going wrong here would be gratefully received.

I have an external PGP key on a Yubikey that has three identities (e-mail addresses) on it. I can send an e-mail from one of these identities to another. If I encrypt the e-mail the other mailbox will be able to decrypt it and verify the signature (of course). If I only sign the e-mail, however, the other mailbox will complain, "Invalid Digital Signature". The 'sent' folder of the sender will show the e-mail as correctly signed even when it was only signed and not encrypted. Any ideas what is going wrong here would be gratefully received.

All Replies (1)

more options

To add to this confusion, it is only one of the three identities that appears to have the problem. The other two can send digitally signed e-mails that will be verified by all three identities.