ftp down
Werner Koch
wk at gnupg.org
Thu Aug 22 15:38:16 CEST 2024
On Thu, 22 Aug 2024 14:01, Björn Persson said:
> next version of GPG that way. To anyone who doesn't already have GPG,
> HTTPS is the best integrity protection they will get.
Not really. This does not protect the files on the server. Only the
.sig and the checksums posted to several places can give you assurance
that the tarball or binary has been produced at a place the
developer/maintainer has under some control.
Salam-Shalom,
Werner
--
The pioneers of a warless world are the youth that
refuse military service. - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 247 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20240822/0b4aa5c1/attachment.sig>
More information about the Gnupg-users
mailing list