Please see discussion at:
The offending phrase is Enigmail-specific; it does not originate from GnuPG:
Suggested phrasing improvement is "UNVALIDATED Good signature".
I would vote for "unverified" good signature
I thought of that too, but it might be confusing since the operation on signatures are called sign/verify, and "good signature" means it was verified correctly, so "unverified good signature" seems weird, and overloads that term.
Another suggestion was "Good signature from UNVERIFIED key". But I prefer still "unvalidated" because that is consistent with PGP's terminology - "Validity is confidence that a public key certificate belongs to its purported owner" - and avoids overloading the term "verify".
Log in to post a comment.