Verification of Package Files When Using Sources.List.
Matthew
pumpkin at cotse.net
Wed Nov 24 21:01:15 UTC 2010
Hello!
My /etc/apt/sources.list contains:
deb http://deb.torproject.org/torproject.org karmic main
In the "authentication" section of my "software sources" I have a
deb.torproject.org archive signing key dated 2009-09-04 with a value 886DDD89.
I was looking at the page which explains how to verify signatures for
downloads: https://www.torproject.org/docs/verifying-signatures.html.en
If one is not directly downloading but using the sources.list file is the
"authentication" section adequate to verify the validity of the downloads?
Thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20101124/156c3c3b/attachment.htm>
More information about the tor-talk
mailing list