From b38990e6667f8415d90956688aa7830239d27a9f Mon Sep 17 00:00:00 2001
From: Andrew David Wong <adw@andrewdavidwong.com>
Date: Sun, 18 Aug 2019 12:32:44 -0500
Subject: [PATCH] Point out that the QMSK is already in every Qubes domU

QubesOS/qubes-issues#2544
---
 project-security/verifying-signatures.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/project-security/verifying-signatures.md b/project-security/verifying-signatures.md
index e76775685c..7699bc496f 100644
--- a/project-security/verifying-signatures.md
+++ b/project-security/verifying-signatures.md
@@ -62,6 +62,10 @@ This Qubes Master Signing Key was generated on and is kept only on a dedicated,
 
 There are several ways to get the Qubes Master Signing Key.
 
+ - If you have access to an existing Qubes installation, it's available in every VM ([except dom0]):
+
+       $ gpg --import /usr/share/qubes/qubes-master-key.asc
+
  - Fetch it with GPG:
 
        $ gpg --fetch-keys https://keys.qubes-os.org/keys/qubes-master-signing-key.asc
@@ -448,4 +452,5 @@ If you still have a question, please address it to the [qubes-users mailing list
 [Qubes repositories]: https://github.com/QubesOS
 [GPG documentation]: https://www.gnupg.org/documentation/
 [qubes-users mailing list]: /support/#qubes-users
+[except dom0]: https://github.com/QubesOS/qubes-issues/issues/2544