aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAndreas K. Hüttel <dilfridge@gentoo.org>2022-02-17 23:45:17 +0100
committerAndreas K. Hüttel <dilfridge@gentoo.org>2022-02-17 23:49:46 +0100
commit22bd56b4db5c1f80096e8e1bc2340b545ee31e0a (patch)
tree98a2583c3575768b1cd8bef80d31128949ef1fec /downloads/signatures/index.html
parentBug #817410: name-logo-guidelines: typo (diff)
downloadwww-22bd56b4db5c1f80096e8e1bc2340b545ee31e0a.tar.gz
www-22bd56b4db5c1f80096e8e1bc2340b545ee31e0a.tar.bz2
www-22bd56b4db5c1f80096e8e1bc2340b545ee31e0a.zip
Add announcement about changed signature format and fix docs
Signed-off-by: Andreas K. Hüttel <dilfridge@gentoo.org>
Diffstat (limited to 'downloads/signatures/index.html')
-rw-r--r--downloads/signatures/index.html12
1 files changed, 3 insertions, 9 deletions
diff --git a/downloads/signatures/index.html b/downloads/signatures/index.html
index 144c886..9c3591d 100644
--- a/downloads/signatures/index.html
+++ b/downloads/signatures/index.html
@@ -69,7 +69,7 @@ nav2-show: true
<h3 class="panel-title"><span class="fa fa-fw fa-check-circle-o"></span> Verifying files</h3>
</div>
<div class="panel-body">
- <p>To verify downloaded files are not tampered with, you need the <tt>.DIGESTS</tt> file matching your release and the matching key from the table above.</p>
+ <p>To verify downloaded files are not tampered with, you need the <tt>.asc</tt> signature file matching your release and the matching key from the table above.</p>
<p>Fetch the key:</p>
@@ -79,15 +79,9 @@ nav2-show: true
<p><kbd>wget -O - https://qa-reports.gentoo.org/output/service-keys.gpg | gpg --import</kbd></p>
- <p>Verify the <tt>DIGESTS</tt> file:</p>
+ <p>Verify the signature:</p>
- <p><kbd>gpg --verify &lt;foo.DIGESTS.asc&gt;</kbd></p>
-
- <p>Verify the download matches the digests. At least one of the following will exist:</p>
-
- <p><kbd>sha512sum -c &lt;foo.DIGESTS.asc&gt;</kbd></p>
- <p><kbd>sha256sum -c &lt;foo.DIGESTS.asc&gt;</kbd></p>
- <p><kbd>sha1sum -c &lt;foo.DIGESTS.asc&gt;</kbd></p>
+ <p><kbd>gpg --verify &lt;foo.asc&gt;</kbd></p>
<br>