Does anyone know where to find the ISC signing keys for source packages?
Rob Austein
sra at isc.org
Tue Dec 28 21:10:04 UTC 2010
At Tue, 28 Dec 2010 15:50:23 -0500 (EST), Thomas Schulz wrote:
>
> It looks like I am a little dim today. Given gpg and the key, what steps
> do I do to verify a source package?
General case:
$ gpg --verify sigfile tarball
Eg:
$ gpg --verify bind-9.7.2-P3.tar.gz.sha256.asc bind-9.7.2-P3.tar.gz
We probably should add this to the aforementioned web page.
More information about the bind-users
mailing list