- Joined
- Nov 19, 2020
I am familiar, for a dummy, with verifying programs from their hashes.
Example from windirstat
What I struggle with is when they only provide you with the software binary and then a separate PGP signature file(.asc). I am at a loss. I can use 7zip to generate various hashes, but what do I do with this PGP .asc file? How do I mash the two together, and end up with a verified file? I know Josh signs his messages with a PGP signature, but I'm stuck. I just want to verify the file I have, and I don't know where to start. The only reason I know about 7zip is some Korean showed me it ages ago, and I never stopped using it, and then years later, by sheer luck, noticed it can generate hashes. What do I use for these PGP signatures?
t. brainlet
Example from windirstat
What I struggle with is when they only provide you with the software binary and then a separate PGP signature file(.asc). I am at a loss. I can use 7zip to generate various hashes, but what do I do with this PGP .asc file? How do I mash the two together, and end up with a verified file? I know Josh signs his messages with a PGP signature, but I'm stuck. I just want to verify the file I have, and I don't know where to start. The only reason I know about 7zip is some Korean showed me it ages ago, and I never stopped using it, and then years later, by sheer luck, noticed it can generate hashes. What do I use for these PGP signatures?
t. brainlet
