Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 30 Dec 2016 17:56:15 +1100
From:      Felix Friedlander <felixphew0@gmail.com>
To:        freebsd-questions@freebsd.org
Subject:   Fwd: Signatures
Message-ID:  <6EF4ACC2-DD83-4970-9346-12600DFF2362@gmail.com>
References:  <995C6DE9-DAAF-47DD-BFF4-9FAC1A917BAA@gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

--Apple-Mail=_864C4B29-4302-4909-9A9D-1D046A79370E
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=utf-8

Re-including the list.

> Begin forwarded message:
>=20
> From: Felix Friedlander <felixphew0@gmail.com>
> Subject: Re: Signatures
> Date: 30 December 2016 at 5:55:06 pm AEDT
> To: Specter <neurospecter@protonmail.ch>
>=20
>=20
>> On 30 Dec 2016, at 5:46 pm, Specter <neurospecter@protonmail.ch> =
wrote:
>>=20
>> Felix,
>>=20
>> Thank you for your response all though that comes as quite a =
surprise. I've had the impression that BSD is for the security conscious =
yet you do not sign your ISO's. I'm a Linux user at the moment and just =
about every Linux developer out there signs their ISO's. I just can't =
imagine that's the case.=20
>>=20
>> Are you absolutely sure? I have actually found that key before but as =
you said, that is not a signing key for the ISO's which is what I need. =
I refuse to use anything that has not been properly signed. I am very =
security conscious.
>>=20
>> Thanks,
>> Spectral
>>=20
>>=20
>>> -------- Original Message --------
>>> Subject: Re: Signatures
>>> Local Time: 29 December 2016 10:40 PM
>>> UTC Time: 30 December 2016 06:40
>>> From: felixphew0@gmail.com
>>> To: Specter <neurospecter@protonmail.ch>
>>> freebsd-questions@freebsd.org <freebsd-questions@freebsd.org>
>>>=20
>>>> On 30 Dec 2016, at 5:27 pm, Specter via freebsd-questions =
<freebsd-questions@freebsd.org> wrote:
>>>>=20
>>>> Hello, I was wondering where you've posted your public signing =
keys? I have not been able to find them anywhere. And where can I find =
the signature files for your ISO's?
>>>>=20
>>>> Thanks,
>>>> Spectral
>>>=20
>>> To the best of my knowledge, FreeBSD ISO images are not signed. You =
can verify their integrity (to a degree) using the checksums (example: =
http://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/ISO-IMAGES/11.0/CH=
ECKSUM.SHA256-FreeBSD-11.0-RELEASE-amd64 ).
>>>=20
>>> The only =E2=80=9Cofficial=E2=80=9D PGP key for the project (as far =
as I=E2=80=99m aware) belongs to the security officer, and is used for =
signing security advisories. You can find the key at =
https://www.freebsd.org/security/so_public_key.asc and the advisories at =
https://www.freebsd.org/security/advisories.html.
>>>=20
>>> Feel free to correct me, anyone, if this is out-of-date or =
incorrect.
>>>=20
>>> --=20
>>> Felix Friedlander <felixphew0@gmail.com>
>>>=20
>>=20
>=20
> Hi,
>=20
> As I suspected my information was quite out-of-date.
>=20
> Signed checksums for each release can be found on the website, near =
the release announcements, notes, and errata. For example: =
https://www.freebsd.org/releases/11.0R/signatures.html contains all the =
relevant signatures for FreeBSD 11.0-RELEASE.
>=20
> I=E2=80=99m not entirely sure which key these are signed with, but it =
should be one of the keys found at =
https://www.freebsd.org/doc/en/articles/pgpkeys/ (downloadable as one =
file at https://www.freebsd.org/doc/pgpkeyring.txt if you need to =
automate this or something).
>=20
> --=20
> Felix Friedlander <felixphew0@gmail.com>
>=20

--=20
Felix Friedlander <felixphew0@gmail.com>


--Apple-Mail=_864C4B29-4302-4909-9A9D-1D046A79370E
Content-Disposition: attachment;
	filename=smime.p7s
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Transfer-Encoding: base64
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--Apple-Mail=_864C4B29-4302-4909-9A9D-1D046A79370E--

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6EF4ACC2-DD83-4970-9346-12600DFF2362>