diff options
| -rw-r--r-- | docs/comparison.md | 4 | ||||
| -rw-r--r-- | docs/releases.md | 42 | ||||
| -rw-r--r-- | xreadthedocs/css/theme_extra.css | 12 |
3 files changed, 42 insertions, 16 deletions
diff --git a/docs/comparison.md b/docs/comparison.md index 39ac813..d8864db 100644 --- a/docs/comparison.md +++ b/docs/comparison.md @@ -29,7 +29,7 @@ Overview | File interface | FUSE | FUSE | in-kernel filesystem | WebDAV | FUSE | | Platforms | Linux (OSX planned [7]) | Linux, OSX; third-party Windows port | Linux only | Linux, OSX, Windows | Linux, OSX | | User interface | Command line only | Command line; third-party graphical | Integrated in login process | Graphical only; Command line planned [8] | Command line only | -| Lines of Code {1} | 3,442 | 9,320 | 7662 {2} | 9921 | 21,353 {3} | +| Lines of Code {1} | 3,442 | 9,320 | 7,662 {2} | 9,921 | 21,353 {3} | References: [[1]](https://github.com/rfjakob/gocryptfs/releases/tag/v0.1) @@ -46,7 +46,7 @@ References: Notes: {1} All computed using `cloc` {2} Counting only `fs/ecryptfs/` -{3} Counting only `sources/` +{3} Counting `sources/` General Security ---------------- diff --git a/docs/releases.md b/docs/releases.md index a599c93..6968109 100644 --- a/docs/releases.md +++ b/docs/releases.md @@ -1,28 +1,42 @@ gocryptfs Releases ================== -Releases done by adding an signed git tag to a commit. All releases -are [available at github](https://github.com/rfjakob/gocryptfs/releases). +gocryptfs is released as -All releases from v0.4 onward are signed using the *gocryptfs signing key*, +* source code using signed git tags, please `git clone https://github.com/rfjakob/gocryptfs.git` +* precompiled binaries with .asc gpg signatures, [download at github](https://github.com/rfjakob/gocryptfs/releases) - Primary key fingerprint: FFF3 E014 44FE D7C3 16A3 545A 895F 5BC1 23A0 2740 +Signing Key +----------- -The public key can be downloaded -[here](https://nuetzlich.net/gocryptfs-signing-key.pub). +Binary and source releases are signed using the *gocryptfs signing key*, key ID 23A02740. -To verify the signed tags, you have to import the public key into your -gpg keyring: +The public key can be downloaded [here](https://nuetzlich.net/gocryptfs-signing-key.pub). +To verify signatures, you have to import it into gpg: $ wget https://nuetzlich.net/gocryptfs-signing-key.pub $ gpg --import gocryptfs-signing-key.pub -Then, you can verify tags using `git tag -v`: +Verify Git Tags +--------------- + +Just call `git tag` with the `-v` flag, for example: $ git tag -v v0.7 - [...] - gocryptfs v0.7 - gpg: Signature made So 20 Dez 2015 20:29:19 CET using RSA key ID 23A02740 - gpg: Good signature [...] + [...] + gocryptfs v0.7 + gpg: Signature made So 20 Dez 2015 20:29:19 CET using RSA key ID 23A02740 + gpg: Good signature [...] + +Verify Binaries +--------------- + +Download both the `.tar.gz` and the `.asc` file, then run `gpg --verify gocryptfs_XYZ.asc`, +for example: + + $ gpg --verify gocryptfs_v0.7.1_debian8_amd64.tar.gz.asc + gpg: assuming signed data in `gocryptfs_v0.7.1_debian8_amd64.tar.gz' + gpg: Signature made Sa 09 Jan 2016 15:53:33 CET using RSA key ID 23A02740 + gpg: Good signature [...] + -Note that the `key ID` is simply the last eight digits of the key fingerprint, `23A0 2740`. diff --git a/xreadthedocs/css/theme_extra.css b/xreadthedocs/css/theme_extra.css index f61df03..a516b09 100644 --- a/xreadthedocs/css/theme_extra.css +++ b/xreadthedocs/css/theme_extra.css @@ -1,9 +1,12 @@ /* * Tweak the overal size to better match RTD. */ + +/* Not good body { font-size: 90%; } +*/ h3, h4, h5, h6 { color: #2980b9; @@ -212,3 +215,12 @@ pre code { padding: 0.5em; -webkit-text-size-adjust: none; } + +p { + margin-bottom: 16px; +} + +thead { + white-space: normal !important; + vertical-align: top !important; +}
\ No newline at end of file |