commit - f327d1433c1fd60a7713ecc720dc99d566a5f8d7
commit + 63dff8d4b0766ab0244e23ccb49c79dcf7aadcc5
blob - 2dbe0f7954daf195243600ec90a8cdc61d256dac
blob + 4a1a129cafadefb1af09d2731bf97807b1db9ae7
--- site/Makefile
+++ site/Makefile
REPOLOGY_URL = https://repology.org/project/telescope/versions
SUBST = ./subst CURRV=0.9 CURRKEY=0.9 NEXTKEY=0.10 \
- CURRSIGN=RWRkrb76bmCHNKaMnALGf2UgKgq0d/O/ULTeGq36Dos7MGm79CXoZLWN \
+ CURRSIGN=RWSmshjFM8Q0IDYUd4I/8G2q9Y0DUaZLac4enOtQh5rzsIcVF+ePXCy7 \
REPOLOGY_BANNER=${REPOLOGY_BANNER} \
REPOLOGY_URL=${REPOLOGY_URL}
blob - 0ac1a48203d40e06a019b1333ee25fe3c2586a32
blob + cf67db1c318007a5061b750580c43397786b1310
--- site/index.gmi
+++ site/index.gmi
$ sudo make install # eventually
```
-A telescope-CURRV.sha256 file containing the checksums is available. However, that only checks for accidental corruption: you can use signify (telescope-CURRV.sha256.sig and the public key telescope-CURRKEY.pub). The hash of the current and next signify public key is also included in the telescope-CURRV.sha256.
+A telescope-CURRV.tar.gz.sha256 file containing the checksums is available. However, that only checks for accidental corruption: you can use signify (telescope-CURRV.tar.gz.sha256.sig and the public key telescope-CURRKEY.pub). The hash of the current and next signify public key is also included in the telescope-CURRV.tar.gz.
-=> https://ftp.omarpolo.com/telescope-CURRV.sha256 telescope-CURRV.sha256
-=> https://ftp.omarpolo.com/telescope-CURRV.sha256.sig telescope-CURRV.sha256.sig
-=> https://ftp.omarpolo.com/telescope-CURRKEY.pub telescope-CURRKEY.pub
-=> https://ftp.omarpolo.com/telescope-NEXTKEY.pub telescope-NEXTKEY.pub
+=> https://ftp.omarpolo.com/telescope-CURRV.tar.gz.sha256 telescope-CURRV.tar.gz.sha256
+=> https://ftp.omarpolo.com/telescope-CURRV.tar.gz.sha256.sig telescope-CURRV.tar.gz.sha256.sig
+=> https://ftp.omarpolo.com/telescope-CURRKEY.pub telescope-CURRKEY.pub
+=> https://ftp.omarpolo.com/telescope-NEXTKEY.pub telescope-NEXTKEY.pub
```Example of how to verify the signature with signify
-$ signify -C -p telescope-CURRKEY.pub -x telescope-CURRV.sha256.sig
+$ signify -C -p telescope-CURRKEY.pub -x telescope-CURRV.tar.gz.sha256.sig
Signature Verified
telescope-CURRV.tar.gz: OK
-telescope-CURRKEY.pub: OK
-telescope-NEXTKEY.pub: OK
```
-telescope-CURKEY.pub is:
+telescope-CURRKEY.pub is:
```
-RWRkrb76bmCHNKaMnALGf2UgKgq0d/O/ULTeGq36Dos7MGm79CXoZLWN
+CURRSIGN
```
and is available inside the tarball in the keys/ directory, along with all the previous and public key for the next release as well.