Next: , Previous: , Up: Installation  

Tarballs integrity check

You have to check downloaded archives integrity and verify their signature to be sure that you have got trusted, untampered software. For integrity and authentication of downloaded binaries GNU Privacy Guard is used. You must download signature (.sig) provided with the tarball.

For the very first time you need to import signing public key. It is provided below, but it is better to check alternative resources with it.

pub   rsa2048/0xF2F59045FFE2F4A1 2015-03-10
      D269 9B73 3C41 2068 D8DA  656E F2F5 9045 FFE2 F4A1
uid   GoVPN releases <releases at govpn dot info>

Then you could verify tarballs signature:

$ gpg --verify govpn-2.3.tar.xz.sig govpn-2.3.tar.xz