incubator-ooo-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From mar...@apache.org
Subject svn commit: r1396206 - in /incubator/ooo/ooo-site/trunk/content/download/checksums: 3.4.0_checksums.html 3.4.1_checksums.html
Date Tue, 09 Oct 2012 19:07:30 GMT
Author: marcus
Date: Tue Oct  9 19:07:29 2012
New Revision: 1396206

URL: http://svn.apache.org/viewvc?rev=1396206&view=rev
Log:
Simplified the verification of the ASC hash keys for Linux and Mac OS

Modified:
    incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.0_checksums.html
    incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.1_checksums.html

Modified: incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.0_checksums.html
URL: http://svn.apache.org/viewvc/incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.0_checksums.html?rev=1396206&r1=1396205&r2=1396206&view=diff
==============================================================================
--- incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.0_checksums.html (original)
+++ incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.0_checksums.html Tue Oct 
9 19:07:29 2012
@@ -1033,11 +1033,9 @@ was not manipulated by an unauthorized t
   <li>Open a terminal and change to the directory with the downloaded AOO and ASC file.</li>
   <li>Type in the following commands:</li>
   <li><pre>cd &lt;path_to_AOO_and_ASC_file&gt;</pre></li>
-  <li><pre>wget http://www.apache.org/dist/incubator/ooo/KEYS</pre></li>
-  <li><pre>gpg --import KEYS</pre></li>
-  <li><pre>KEYID="0x`gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz 2>&amp;1 | grep 'key ID' | awk '{print $NF}'`"</pre></li>
-  <li><pre>gpg --no-default-keyring --keyring vendors.gpg --recv-key $KEYID</pre></li>
-  <li><pre>gpg --keyring vendors.gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz</pre></li>
+  <li><pre>wget https://people.apache.org/keys/group/ooo.asc</pre></li>
+  <li><pre>gpg --import ooo.asc</pre></li>
+  <li><pre>gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc &lt;downloaded
AOO file&gt;.tar.gz</pre></li>
   <li>When both checksums match it is indicated with an "Good signature from &lt;Person
who has created the signature&gt;
       statement. <br /> Otherwise "BAD signature from ...".</li>
 </ul>
@@ -1051,11 +1049,9 @@ was not manipulated by an unauthorized t
   <li>Open a terminal (usually from here: "/Applications/Utilities").</li>
   <li>Type in the following commands:</li>
   <li><pre>cd &lt;path_to_AOO_and_ASC_file&gt;</pre></li>
-  <li><pre>curl http://www.apache.org/dist/incubator/ooo/KEYS -o KEYS</pre></li>
-  <li><pre>gpg --import KEYS</pre></li>
-  <li><pre>KEYID="0x`gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz 2>&amp;1 | grep 'key ID' | awk '{print $NF}'`"</pre></li>
-  <li><pre>gpg --no-default-keyring --keyring vendors.gpg --recv-key $KEYID</pre></li>
-  <li><pre>gpg --keyring vendors.gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz</pre></li>
+  <li><pre>curl https://people.apache.org/keys/group/ooo.asc -o ooo.asc</pre></li>
+  <li><pre>gpg --import ooo.asc</pre></li>
+  <li><pre>gpg --verify &lt;downloaded AOO file&gt;.dmg.asc &lt;downloaded
AOO file&gt;.dmg</pre></li>
   <li>When both checksums match it is indicated with an "Good signature from &lt;Person
who has created the signature&gt;
       statement. <br /> Otherwise "BAD signature from ...".</li>
 </ul>

Modified: incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.1_checksums.html
URL: http://svn.apache.org/viewvc/incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.1_checksums.html?rev=1396206&r1=1396205&r2=1396206&view=diff
==============================================================================
--- incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.1_checksums.html (original)
+++ incubator/ooo/ooo-site/trunk/content/download/checksums/3.4.1_checksums.html Tue Oct 
9 19:07:29 2012
@@ -844,11 +844,9 @@ was not manipulated by an unauthorized t
   <li>Open a terminal and change to the directory with the downloaded AOO and ASC file.</li>
   <li>Type in the following commands:</li>
   <li><pre>cd &lt;path_to_AOO_and_ASC_file&gt;</pre></li>
-  <li><pre>wget http://www.apache.org/dist/incubator/ooo/KEYS</pre></li>
-  <li><pre>gpg --import KEYS</pre></li>
-  <li><pre>KEYID="0x`gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz 2>&amp;1 | grep 'key ID' | awk '{print $NF}'`"</pre></li>
-  <li><pre>gpg --no-default-keyring --keyring vendors.gpg --recv-key $KEYID</pre></li>
-  <li><pre>gpg --keyring vendors.gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz</pre></li>
+  <li><pre>wget https://people.apache.org/keys/group/ooo.asc</pre></li>
+  <li><pre>gpg --import ooo.asc</pre></li>
+  <li><pre>gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc &lt;downloaded
AOO file&gt;.tar.gz</pre></li>
   <li>When both checksums match it is indicated with an "Good signature from &lt;Person
who has created the signature&gt;
       statement. <br /> Otherwise "BAD signature from ...".</li>
 </ul>
@@ -862,11 +860,9 @@ was not manipulated by an unauthorized t
   <li>Open a terminal (usually from here: "/Applications/Utilities").</li>
   <li>Type in the following commands:</li>
   <li><pre>cd &lt;path_to_AOO_and_ASC_file&gt;</pre></li>
-  <li><pre>curl http://www.apache.org/dist/incubator/ooo/KEYS -o KEYS</pre></li>
-  <li><pre>gpg --import KEYS</pre></li>
-  <li><pre>KEYID="0x`gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz 2>&amp;1 | grep 'key ID' | awk '{print $NF}'`"</pre></li>
-  <li><pre>gpg --no-default-keyring --keyring vendors.gpg --recv-key $KEYID</pre></li>
-  <li><pre>gpg --keyring vendors.gpg --verify &lt;downloaded AOO file&gt;.tar.gz.asc
&lt;downloaded AOO file&gt;.tar.gz</pre></li>
+  <li><pre>curl https://people.apache.org/keys/group/ooo.asc -o ooo.asc</pre></li>
+  <li><pre>gpg --import ooo.asc</pre></li>
+  <li><pre>gpg --verify &lt;downloaded AOO file&gt;.dmg.asc &lt;downloaded
AOO file&gt;.dmg</pre></li>
   <li>When both checksums match it is indicated with an "Good signature from &lt;Person
who has created the signature&gt;
       statement. <br /> Otherwise "BAD signature from ...".</li>
 </ul>



Mime
View raw message