[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Verifying signatures
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Verifying signatures
- From: Christian Fromme <kaner@xxxxxxxxxx>
- Date: Sun, 14 Mar 2010 14:13:40 +0100
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Sun, 14 Mar 2010 09:13:53 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:sender:received:in-reply-to :references:date:x-google-sender-auth:message-id:subject:from:to :content-type:content-transfer-encoding; bh=dBOvNildyzroiUPW61oZVZAvjIVLUutQ1EjA1IR4oaI=; b=tPmkwB5uNqDXFJrn9hcZCS9QYksq5ZZ5hQzi1ZRSAVticFXqAe3Mifi4R81hgpQYX/ b2E+vKd/26d2rK3DCytlcrNk0GCrqvoSgtJN1LfwtlJgEprap+G5O+5+N7dnfWFI0kZd pUp0Gpa8a8jeMzSErlE+KckG16sR4yOccgJlU=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:sender:in-reply-to:references:date :x-google-sender-auth:message-id:subject:from:to:content-type :content-transfer-encoding; b=KjPczdFJ3Yg/AMYtt4MudAh3/UgLINKoPqPBCndSUExZkV7XS3MMOnoKGbACGfgyJ9 ii4rZ3P1dU6pA0jzdImqIv7dH73BFdK5U0/W2bLIerQ8nQ/nV0aKouXvT9IZi4S/pHMe a00b5hQ/SimvTIv7QQqhAJwaGtGcxMsix47rs=
- In-reply-to: <8CC918AC3960235-12E0-1330E@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- References: <8CC918AC3960235-12E0-1330E@xxxxxxxxxxxxxxxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
On Sun, Mar 14, 2010 at 1:41 PM, <zzzjethro666@xxxxxxxxxxxx> wrote:
> At the Torproject site, the directions are as follows:
> I'll need someone's keys. Okay.
> Step one: Import the keys Right. From where exactly and how, exactly.
> Step two: Verify the fingerprints. Yeah? How exactly? I still have never
> been able to locate a file with .asc at the end of it. I am on Mac OS 10.5.2
> ppc. Where is it?
> Step three: Verify the download package. Right again. "If you're using
> GnuPG..." well, what if I'm not? I tried downloading that and installing it.
> It went okay but it either won't open, and then I couldn't find the download
> at all. Kinda lost here.
> "use the following type of command" exactly where do I use this so-called
> "following type of command?"
> For instance, under Step one: Import the keys is the following information:
> gpg --keyserver subkeys.pgp.net --recv-keys 0x28988BF5 What
> exactly is this?
> Is it an address?
Disclaimer: I'm not familiar with the MacOSX operating system very
much, but this could be a start:
First of all, you need to install GnuPG of some sorts on your
Computer. Try this:
If you got that downloaded and installed, you need to fire up a
command shell. Thats a little window into which you can type commands.
Try this address for help:
In that command shell you should be able to execute the "gpg" command
after a successfull install. Try this:
It should give you an output similar to:
gpg (GnuPG) 1.4.10
Copyright (C) 2008 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
If this was successfull, GnuPG is actually installed on your computer,
yay! Now you will need to import the keys like so on the command
gpg --keyserver subkeys.pgp.net --recv-keys 0x28988BF5
This command will look for the key with the id "0x28988BF5" on server
"subkeys.pgp.net" and download it for you.
After that step is done, locate your package and .asc file, and verify
the package on the command shell:
gpg --verify PACKAGENAME.asc PACKAGENAME
Where PACKAGENAME should be the name of the package you downloaded.
Hope this helps,
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk in the body. http://archives.seul.org/or/talk/