FreeBSD Mail Archives

Date:      Fri, 30 Dec 2016 17:56:15 +1100
From:      Felix Friedlander <felixphew0@gmail.com>
To:        freebsd-questions@freebsd.org
Subject:   Fwd: Signatures
Message-ID:  <6EF4ACC2-DD83-4970-9346-12600DFF2362@gmail.com>
References:  <995C6DE9-DAAF-47DD-BFF4-9FAC1A917BAA@gmail.com>


[-- Attachment #1 --]
Re-including the list.

> Begin forwarded message:
> 
> From: Felix Friedlander <felixphew0@gmail.com>
> Subject: Re: Signatures
> Date: 30 December 2016 at 5:55:06 pm AEDT
> To: Specter <neurospecter@protonmail.ch>
> 
> 
>> On 30 Dec 2016, at 5:46 pm, Specter <neurospecter@protonmail.ch> wrote:
>> 
>> Felix,
>> 
>> Thank you for your response all though that comes as quite a surprise. I've had the impression that BSD is for the security conscious yet you do not sign your ISO's. I'm a Linux user at the moment and just about every Linux developer out there signs their ISO's. I just can't imagine that's the case. 
>> 
>> Are you absolutely sure? I have actually found that key before but as you said, that is not a signing key for the ISO's which is what I need. I refuse to use anything that has not been properly signed. I am very security conscious.
>> 
>> Thanks,
>> Spectral
>> 
>> 
>>> -------- Original Message --------
>>> Subject: Re: Signatures
>>> Local Time: 29 December 2016 10:40 PM
>>> UTC Time: 30 December 2016 06:40
>>> From: felixphew0@gmail.com
>>> To: Specter <neurospecter@protonmail.ch>
>>> freebsd-questions@freebsd.org <freebsd-questions@freebsd.org>
>>> 
>>>> On 30 Dec 2016, at 5:27 pm, Specter via freebsd-questions <freebsd-questions@freebsd.org> wrote:
>>>> 
>>>> Hello, I was wondering where you've posted your public signing keys? I have not been able to find them anywhere. And where can I find the signature files for your ISO's?
>>>> 
>>>> Thanks,
>>>> Spectral
>>> 
>>> To the best of my knowledge, FreeBSD ISO images are not signed. You can verify their integrity (to a degree) using the checksums (example: http://ftp.freebsd.org/pub/FreeBSD/releases/amd64/amd64/ISO-IMAGES/11.0/CHECKSUM.SHA256-FreeBSD-11.0-RELEASE-amd64 ).
>>> 
>>> The only “official” PGP key for the project (as far as I’m aware) belongs to the security officer, and is used for signing security advisories. You can find the key at https://www.freebsd.org/security/so_public_key.asc and the advisories at https://www.freebsd.org/security/advisories.html.
>>> 
>>> Feel free to correct me, anyone, if this is out-of-date or incorrect.
>>> 
>>> -- 
>>> Felix Friedlander <felixphew0@gmail.com>
>>> 
>> 
> 
> Hi,
> 
> As I suspected my information was quite out-of-date.
> 
> Signed checksums for each release can be found on the website, near the release announcements, notes, and errata. For example: https://www.freebsd.org/releases/11.0R/signatures.html contains all the relevant signatures for FreeBSD 11.0-RELEASE.
> 
> I’m not entirely sure which key these are signed with, but it should be one of the keys found at https://www.freebsd.org/doc/en/articles/pgpkeys/ (downloadable as one file at https://www.freebsd.org/doc/pgpkeyring.txt if you need to automate this or something).
> 
> -- 
> Felix Friedlander <felixphew0@gmail.com>
> 

-- 
Felix Friedlander <felixphew0@gmail.com>


[-- Attachment #2 --]
0�	*�H��
��0�10	+0�	*�H��
��
_0�u0�]�M�}g؜��d}�/'г30
	*�H��
0u10	UIL10U

StartCom Ltd.1)0'U StartCom Certification Authority1#0!UStartCom Class 1 Client CA0
161204063157Z
200304063157Z0D10Ufelixphew0@gmail.com1#0!	*�H��
	felixphew0@gmail.com0��0*�H�=+�#���ml�1OqQ������QM]V�N~R�Ŀ��P���
53���4�XMc#'�'��^��6v�9��*J	�r�j���Wfe�7^NY��*� �� *F0N>��.��M(L�۾rC���JaC2���'�X�ף��0��0U��0U%0++0	U00U����S�	7X�'ܨJ$(,
0U#0�$�l9a�I��F+�(�'Hmh0o+c0a0$+0�http://ocsp.startssl.com09+0�-http://aia.startssl.com/certs/sca.client1.crt08U10/0-�+�)�'http://crl.startssl.com/sca-client1.crl0U0�felixphew0@gmail.com0#U0�http://www.startssl.com/0GU @0>0<+��70-0++https://www.startssl.com/policy0
	*�H��
��$b�d�m�̇̃����CN��B�Un��eSA
2�HC��j'�D)��3�	6t� ���J��cˌH�:z���R���B��
7$�̊�B�����.Q�i�G�f')����nbC�H=ب��d�g@�s�6�,��HܫC�Ł΂ഉ9h����EJho�{��O0`��>[˱Lf�.Ѷw�[z�lv}��;�dR����k�aQ�?�I�Ə��3m,�%((��H���yl&�#������Fq0��0�ʠk��}
׈�Q
�Y���0
	*�H��
0}10	UIL10U

StartCom Ltd.1+0)U"Secure Digital Certificate Signing1)0'U StartCom Certification Authority0
151216010005Z
301216010005Z0u10	UIL10U

StartCom Ltd.1)0'U StartCom Certification Authority1#0!UStartCom Class 1 Client CA0�"0
	*�H��
�0�
��}��â}��[���[_�u����$��Wy�5�	|̔
�v�n�qY�)\a�L$d��Y��G|B"�Q�Ǥ��ĩ�VD�#'��F����	�k9O�_]�*��ςz�_k�U.u3��r	�#�:���C<o��g��T)�K�
�Xah8�v�[�\Kq�dlO�)3+u�7�J5�"�;�[��v�f�L/"2ϩ�J�#����4ד�[�U�� ��T��B,�a��˖������a�7H���<����=q���d0�`0U�0U%0++0U�0�02U+0)0'�%�#�!http://crl.startssl.com/sfsca.crl0f+Z0X0$+0�http://ocsp.startssl.com00+0�$http://aia.startssl.com/certs/ca.crt0U$�l9a�I��F+�(�'Hmh0U#0�N��@[�i�0�4hC�A��0?U 80604U 0,0*+http://www.startssl.com/policy0
	*�H��
���������[��#'#�4�pnRۡ�ЗN�⛭`�]K"#H��*߷Թ�ψ;U��A8���Ҟ�eg{�ozm�Y���E60�A��)wXRK��6�c^�-��A���l������^�k[���'�:�G=��;�oLv��{�$B�5�;8�b�,ZP��4���{o[-�໢j��	��׏m)��[땭��[�����������4	s.c�|�Ҵ�v���YLJ<��|��ӯgu�0�j�D2
@�h�l+�:��j�\�ze_ևa@���HyM�H�I�Nxp�����K?�%	㤺R�C�����:=�?^��&�����7��m´)����A�2;E~�V�B��1���$�EvcKj؝(O��o�پU`"$��a����;ҡ��j�0����$�&<��$ۊ+�/�xjz���b�,7�}W*�1�ܺ���t��Dv#�8�K
%^�������P�>��/i�?�)yR�uQ��g^���z���`~�sP��9��1��0��0��0u10	UIL10U

StartCom Ltd.1)0'U StartCom Certification Authority1#0!UStartCom Class 1 Client CAM�}g؜��d}�/'г30	+���0	*�H��
	1	*�H��
0	*�H��
	1
161230065616Z0#	*�H��
	1ю#�n�a��|`q�'0��	+�71��0��0u10	UIL10U

StartCom Ltd.1)0'U StartCom Certification Authority1#0!UStartCom Class 1 Client CAM�}g؜��d}�/'г30��*�H��
	1�����0u10	UIL10U

StartCom Ltd.1)0'U StartCom Certification Authority1#0!UStartCom Class 1 Client CAM�}g؜��d}�/'г30	*�H�=��0��B���H C�.	���l��r�I%)��)��:�����q����o�e�fX�x�������,A�B�f�{�s�#�JB��������W���C��S���M~�O�6��o��/�sa�o�QM~�*S�'��

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6EF4ACC2-DD83-4970-9346-12600DFF2362>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation