diff options
author | Jakob Unterwurzacher | 2016-01-10 16:13:28 +0100 |
---|---|---|
committer | Jakob Unterwurzacher | 2016-01-10 16:13:28 +0100 |
commit | 551cab50f3706dc6f481c6dcb8bb837fcc368507 (patch) | |
tree | 7aa7cf5aa1921295f4c131834e0c35fdd58e847b /docs | |
parent | e0edbc1cdf28df6131a388f530447c503dc2ff08 (diff) |
Describe how to verify .asc signatures; fix table wrap problem
Diffstat (limited to 'docs')
-rw-r--r-- | docs/comparison.md | 4 | ||||
-rw-r--r-- | docs/releases.md | 42 |
2 files changed, 30 insertions, 16 deletions
diff --git a/docs/comparison.md b/docs/comparison.md index 39ac813..d8864db 100644 --- a/docs/comparison.md +++ b/docs/comparison.md @@ -29,7 +29,7 @@ Overview | File interface | FUSE | FUSE | in-kernel filesystem | WebDAV | FUSE | | Platforms | Linux (OSX planned [7]) | Linux, OSX; third-party Windows port | Linux only | Linux, OSX, Windows | Linux, OSX | | User interface | Command line only | Command line; third-party graphical | Integrated in login process | Graphical only; Command line planned [8] | Command line only | -| Lines of Code {1} | 3,442 | 9,320 | 7662 {2} | 9921 | 21,353 {3} | +| Lines of Code {1} | 3,442 | 9,320 | 7,662 {2} | 9,921 | 21,353 {3} | References: [[1]](https://github.com/rfjakob/gocryptfs/releases/tag/v0.1) @@ -46,7 +46,7 @@ References: Notes: {1} All computed using `cloc` {2} Counting only `fs/ecryptfs/` -{3} Counting only `sources/` +{3} Counting `sources/` General Security ---------------- diff --git a/docs/releases.md b/docs/releases.md index a599c93..6968109 100644 --- a/docs/releases.md +++ b/docs/releases.md @@ -1,28 +1,42 @@ gocryptfs Releases ================== -Releases done by adding an signed git tag to a commit. All releases -are [available at github](https://github.com/rfjakob/gocryptfs/releases). +gocryptfs is released as -All releases from v0.4 onward are signed using the *gocryptfs signing key*, +* source code using signed git tags, please `git clone https://github.com/rfjakob/gocryptfs.git` +* precompiled binaries with .asc gpg signatures, [download at github](https://github.com/rfjakob/gocryptfs/releases) - Primary key fingerprint: FFF3 E014 44FE D7C3 16A3 545A 895F 5BC1 23A0 2740 +Signing Key +----------- -The public key can be downloaded -[here](https://nuetzlich.net/gocryptfs-signing-key.pub). +Binary and source releases are signed using the *gocryptfs signing key*, key ID 23A02740. -To verify the signed tags, you have to import the public key into your -gpg keyring: +The public key can be downloaded [here](https://nuetzlich.net/gocryptfs-signing-key.pub). +To verify signatures, you have to import it into gpg: $ wget https://nuetzlich.net/gocryptfs-signing-key.pub $ gpg --import gocryptfs-signing-key.pub -Then, you can verify tags using `git tag -v`: +Verify Git Tags +--------------- + +Just call `git tag` with the `-v` flag, for example: $ git tag -v v0.7 - [...] - gocryptfs v0.7 - gpg: Signature made So 20 Dez 2015 20:29:19 CET using RSA key ID 23A02740 - gpg: Good signature [...] + [...] + gocryptfs v0.7 + gpg: Signature made So 20 Dez 2015 20:29:19 CET using RSA key ID 23A02740 + gpg: Good signature [...] + +Verify Binaries +--------------- + +Download both the `.tar.gz` and the `.asc` file, then run `gpg --verify gocryptfs_XYZ.asc`, +for example: + + $ gpg --verify gocryptfs_v0.7.1_debian8_amd64.tar.gz.asc + gpg: assuming signed data in `gocryptfs_v0.7.1_debian8_amd64.tar.gz' + gpg: Signature made Sa 09 Jan 2016 15:53:33 CET using RSA key ID 23A02740 + gpg: Good signature [...] + -Note that the `key ID` is simply the last eight digits of the key fingerprint, `23A0 2740`. |