gpg: Signature made Wed 04:20:25 PM PDT using RSA key ID 440DDCF1 Will be updated monthly do not trust this certificate after October 2015. The output looks something like (emphasis added):Īs of September 2015, Sandstorm releases are signed with the PGP key withįingerprint 160D 2D57 7518 B58D 94C9 800B 63F2 2749 9DA8 CCBD. Use our Keybase profiles, for example: Kenton Varda (kentonv), Asheesh Laroia (asheesh), Drew Fisher (zarvox)ĭownload that developer's corresponding release key certificate from the Sandstorm github repo.Meet us in person and ask for our business cards.Obtain the PGP key fingerprint of a Sandstorm developer you trust. (If you know what you're doing, you can skip this.)ĭownload and import the Sandstorm releases keyring. If you aren't experienced with GPG already, let's do these instructions in a new empty workspace to avoid confusion. If you'd rather not trust HTTPS at all, even from GitHub, another option is PGP-verified install. The installer will verify signatures on all additional files it downloads. This verifies that you're running our published installer script, even in the unlikely event that someone has compromised our download server or HTTPS certificate. If you are uncomfortable with curl|bash, another option is to download install.sh from our GitHub repository and then run it: wget Using Debian or Ubuntu, you can use the unattended-upgrades package, which can even reboot the If you desire security updates of the underlying system, and are Once Sandstorm is installed, it will update itself and all Sandstorm apps, gaining new features and Works, including non-interactive modes, or learn how toĪdminister Sandstorm once it is installed. You can also read technical documentation on how the install script You can jump straight into the install by running: curl | bash
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |