From: Mark J. Cox Date: Tue, 30 Nov 2004 14:34:16 +0000 (+0000) Subject: Mention that the keys likely to have signed the distribution are now X-Git-Tag: BEN_FIPS_TEST_6~34^2~1 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=e6e1f4cb5e37f77fe61ff568dd2904f21ec5b82c;p=thirdparty%2Fopenssl.git Mention that the keys likely to have signed the distribution are now listed on the web site for easy finding and downloading --- diff --git a/FAQ b/FAQ index 463bc1e1396..fd354b3b402 100644 --- a/FAQ +++ b/FAQ @@ -152,7 +152,8 @@ Use MD5 to check that a tarball from a mirror site is identical: md5sum TARBALL | awk '{print $1;}' | cmp - TARBALL.md5 You can check authenticity using pgp or gpg. You need the OpenSSL team -member public key used to sign it (download it from a key server). Then +member public key used to sign it (download it from a key server, see a +list of keys at ). Then just do: pgp TARBALL.asc