[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #8689 [Tor Sysadmin Team]: Periodically verify signatures in /dist

To: undisclosed-recipients:;
Subject: [tor-bugs] #8689 [Tor Sysadmin Team]: Periodically verify signatures in /dist
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 11 Apr 2013 22:32:13 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 11 Apr 2013 18:32:23 -0400
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#8689: Periodically verify signatures in /dist
-------------------------------+--------------------------------------------
 Reporter:  mo                 |          Owner:     
     Type:  defect             |         Status:  new
 Priority:  normal             |      Milestone:     
Component:  Tor Sysadmin Team  |        Version:     
 Keywords:                     |         Parent:     
   Points:                     |   Actualpoints:     
-------------------------------+--------------------------------------------
 Give the recent bad signatures of some files in /dist that only came to
 light after a user emailed helpdesk, I wrote a bash script that I now run
 periodically on my dist mirror to verify the signatures. I think it's not
 a bad idea to run it on tpo.org as well.

 As first argument, it takes the path to /dist. It uses a local independent
 public keyring I update from time to time. That path must be customized in
 the script.

 It currently excludes /dist/manual because that contains unsigned copies
 of the user manual.

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/8689>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #8689 [Tor Sysadmin Team]: Periodically verify signatures in /dist
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #8346 [Tor bundles/installation]: Vidalia Bundles have bad signatures
Next by Author: [tor-bugs] #8690 [EFF-HTTPS Everywhere]: imgbox bad syntax causes failure
Previous by thread: Re: [tor-bugs] #8346 [Tor bundles/installation]: Vidalia Bundles have bad signatures
Next by thread: Re: [tor-bugs] #8689 [Tor Sysadmin Team]: Periodically verify signatures in /dist
Index(es):
- Author
- Thread