gethstatically on Linux, to make released binary more compatible (#454)
.tar.gz.sig files are detached PGP signatures
.tar.gz.asc files are ascii-armored detached PGP signatures
.tar.gz are archive (compressed) files containing the
To verify a release with a signature: First, make sure you have a
gpg tool installed, eg.
gnupg2. Then, if you haven't already, you'll need to import the signing key, which you'll find here. This step is included below.
# Import my signing public key $ wget https://raw.githubusercontent.com/ethereumproject/volunteer/master/Volunteer-Public-Keys/tomek%40zdybal.lap.pl.pub $ gpg —import firstname.lastname@example.org # Verify $ gpg --verify geth-classic-linux-v4.2.0-c11fbdf.tar.gz.asc gpg: assuming signed data in 'geth-classic-linux-v4.2.0-c11fbdf.tar.gz' gpg: Signature made Tue 02 Jan 2018 11:01:33 PM UTC gpg: using DSA key 86C9E79D83B626AE95548DC3F157D3BD6E2EED66 gpg: Good signature from "Tomasz Zdybał (personal) <email@example.com>" [unknown] gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 86C9 E79D 83B6 26AE 9554 8DC3 F157 D3BD 6E2E ED66
All tagged and development downloads are also be available at our automated builds website: http://builds.etcdevteam.com.