[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [GNU-linux-libre] Help users to verify their downloads
From: |
Ludovic Courtès |
Subject: |
Re: [GNU-linux-libre] Help users to verify their downloads |
Date: |
Wed, 20 Jun 2018 16:18:51 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.1 (gnu/linux) |
Hello Donald & all,
GNU Guix uses signed tags and commits on its Git repository, which is
where package definitions are, and release files on alpha.gnu.org are
also GPG-signed by one of the maintainers.
Pre-built binaries for packages, which are opt-in, are also signed.
It’s up to the user to decide whether or not to trust binaries provided
by, say, hydra.gnu.org:
https://www.gnu.org/software/guix/manual/html_node/Substitute-Server-Authorization.html
Most of our package builds are bit-reproducible so users can “challenge”
servers that provide binaries—i.e., check whether they provide the same
binaries as other servers or the same as those they built locally:
https://www.gnu.org/software/guix/manual/html_node/Invoking-guix-challenge.html
Ludo’.
signature.asc
Description: PGP signature
- [GNU-linux-libre] Help users to verify their downloads, Donald Robertson, 2018/06/18
- Re: [GNU-linux-libre] Help users to verify their downloads,
Ludovic Courtès <=
- Re: [GNU-linux-libre] Help users to verify their downloads, Donald Robertson, 2018/06/20
- Re: [GNU-linux-libre] Help users to verify their downloads, Denis 'GNUtoo' Carikli, 2018/06/24
- Re: [GNU-linux-libre] Help users to verify their downloads, Dmitry Samoyloff, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, bill-auger, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, Jean Louis, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, bill-auger, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, Jean Louis, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, Patrick McDermott, 2018/06/25
- Re: [GNU-linux-libre] Help users to verify their downloads, Jean Louis, 2018/06/26
Re: [GNU-linux-libre] Help users to verify their downloads, Patrick McDermott, 2018/06/25