Unable to Verify 64 bit Installer on Windows
Greg Williamson
greg.williamson45@gmail.com
Thu Dec 30 21:24:49 GMT 2021
Hello,
While attempting to verify the installer found here:
https://cygwin.com/install.html
GPG verification for "setup-x86_64.exe" failed with "BAD signature from
"Cygwin <cygwin@cygwin.com>". I also created a SHA512 hash of the installer
and it did not match the one posted here:
https://cygwin.com/sha512.sum
As a sanity check I attempted to verify the 32bit version "setup-x86.exe".
The SHA512 matched and the GPG signature verification succeeded.
I thought I'd report here in case there was a security issue. Thank you in
advance for your assistance!
~Greg
More information about the Cygwin
mailing list