Re: Verifying Debian 9.9 with SHA and SHA.signatures
- Date: Fri, 24 May 2019 16:44:42 +0200
- From: "Thomas Schmitt" <scdbackup@xxxxxxx>
- Subject: Re: Verifying Debian 9.9 with SHA and SHA.signatures
> I've never found any terminal commands to use the checksums, or the
> signing key.
Have a look at
The first one gives an overview. You already seem to know most of this.
It also shows examples of verification commands.
The second one is about john doe's proposal, which for now is the
best candidate for a SHA512 checksum verification command:
sha512sum -c --ignore-missing SHA512SUMS
and about my proposal to verify the GPG signature directly on the remote
gpg --keyserver keyring.debian.org --verify SHA512SUMS.sign SHA512SUMS
> Please could Debian create some extra documentation on using commands to
> verify Debian's isos' with SHAs and signatures?
The need is known.
we see the announcement of improvement by the web team.
Have a nice day :)