-
Notifications
You must be signed in to change notification settings - Fork 1
Verifying downloaded ISO files
This guide assumes the ISO and the other files are in same directory and that your inside it.
-
gpgis required to check. This can be installed withsudo apt install gpgon RRR or any Debian based distrobutions.
Download the Rolling Rhino Remix team key with wget -q "https://rollingrhino.org/rolling-rhino-team.gpg",
then import/add it to gpg with gpg --import ./rolling-rhino-team.gpg.
after use gpg --verify ./*.sig for example:
pumpkin-king@pumpkinking-desktop:~/Downloads$ gpg --verify ./*.sig
gpg: assuming signed data in '/home/pumpkin-king/Downloads/rolling-2022-06-03.iso'
gpg: Signature made Thu 02 Jun 2022 05:34:27 PM PDT
gpg: using RSA key A2C555536C8418110643D071945D30DAB6C43922
gpg: Good signature from "Rolling Rhino Remix team <[email protected]>" [ultimate]
If gpg does not say "Good signature" then that means this is not from Rolling Rhino Remix team!
Next up is verifying the sha256 of ISO file.
Use sha256sum -c *.sha256sum, for example:
pumpkin-king@pumpkinking-desktop:~/Downloads$ sha256sum -c *.sha256sum
./rolling-2022-06-03.iso: OK
If this does not show "OK" then the contents of the file are corrupt!