Tag: gnupg

Automatically signed GitHub commits are puzzling

I wanted to finally start getting into signing my commits, mainly because among any other reasons, it increases the overall confidence in my work. With the GitHub's decision to display a yellow warning stating Unverified near the commit list, the trend towards signing will almost…

How to verify integrity of OpenWRT files

The OpenWRT page about download integrity verification describes three steps for a successful verification of downloaded files: Download the sha256sum and sha256sum.asc files Check the signature with gpg --with-fingerprint --verify sha256sum.asc sha256sum, ensure that the GnuPG …