[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #3893 [Website]: Verifying-signatures needs some work



#3893: Verifying-signatures needs some work
-------------------------+--------------------------------------------------
 Reporter:  mikeperry    |          Owner:  phobos
     Type:  enhancement  |         Status:  new   
 Priority:  normal       |      Milestone:        
Component:  Website      |        Version:        
 Keywords:               |         Parent:        
   Points:               |   Actualpoints:        
-------------------------+--------------------------------------------------
 https://www.torproject.org/docs/verifying-signatures.html.en is
 ridiculously complicated and stuffed with tons of irrelevant information.

 We should break it into 2 pages. The list of keys that signs sub-
 components and/or email should be on a completely separate page. The only
 keys on this page should be those that actually sign user-facing packages:
 TBB and (maybe) the vidalia expert bundles.

 The page should walk the user through verifying a signature of a specific
 package for each platform.  The page should focus on only one key and only
 one package. This package should probably be TBB.

 Also, much of the material on this page is out of date. For example, the
 Mac utilities are completely different now, are hosted at a new URL, and
 now have a GUI that handles the key import process (but sadly not package
 signature verification). They do at least put the gpg binary into the
 system path, so you no longer have to grovel through /Applications in
 order to find it.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/3893>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs