Skip to content

FAQ

Jump to bottom
Taras Drozdovskyi edited this page Oct 13, 2021 · 11 revisions

How to use GPG to verify signed release?

To perform the verification, you need the following:

  • Signed file – for example edge-home-orchestration-go-v1.0.0.tar.gz
  • Signature file – accompanying file with “.asc” extension (Ex. edge-home-orchestration-go-v1.0.0.tar.gz.asc)
  • Public key – downloaded from a key server

Getting the public key key-ID from the signature file

$ gpg --with-fingerprint <signature file>

Download public key from key server

$ gpg --keyserver pgp.mit.edu --recv-keys <key-ID>

Verification signed file

$ gpg --verify <signature file> <signed file>

Community

  Code  |   Blog  |   Youtube   |

I - Starting

  1. Introducing
  2. Quick Start

II - Basic Utilization

  1. Hello world

III - Development

  1. Contributing
  2. Testing
  3. RESTful API
  4. Useful Utilities

IV - References

  1. FAQ
  2. References
Clone this wiki locally