diff options
| author | Micah Anderson <micah@riseup.net> | 2017-11-08 14:13:51 -0500 |
|---|---|---|
| committer | Micah Anderson <micah@riseup.net> | 2017-11-08 14:13:51 -0500 |
| commit | 3287fa4a0d0c14d22a35e8471acaf579b53a8919 (patch) | |
| tree | d6f9eee313c74e43dc70526d5c07e206adac213f | |
| parent | d571fe1744165e7f549c91ba00db879ea2735fbb (diff) | |
Update android instructions to point people to the centralized signature
verification page.
Also make a note that mac and android are already verified, but we provide
signatures for manual verification if desired.
| -rw-r--r-- | pages/android/en.text | 8 | ||||
| -rw-r--r-- | pages/signature-verification/en.text | 2 |
2 files changed, 3 insertions, 7 deletions
diff --git a/pages/android/en.text b/pages/android/en.text index fed79eb..5337a23 100644 --- a/pages/android/en.text +++ b/pages/android/en.text @@ -33,13 +33,7 @@ h3. Beta version <%= render({:partial => 'common/download_button'}, {:link => 'https://dl.bitmask.net/client/android/beta/Bitmask-Android-0.9.7-rc1.apk', :text => 'Download for Android'}) %> -<%= render({:partial => 'common/notice'}, {:type => 'warning', :text => '<b>ATTENTION:</b> Please verify that the signing certificate of the downloaded app matches this SHA256 fingerprint:<p> 9C:94:DB:F8:46:FD:95:97:</br>47:57:17:2A:6A:8D:9A:9B:</br>DF:8C:40:21:A6:6C:15:11:</br>28:28:D1:72:39:1B:81:AA </p>'}) %> - -h3. How to verify the fingerprint - using the command line on Linux - -bc. cd /path/to/your/apk -unzip -p bitmask.apk META-INF/*.RSA | keytool -printcert - +<%= render({:partial => 'common/notice'}, {:type => 'warning', :text => '<b>ATTENTION:</b> Please [[verify=>https://dl.bitmask.net/en/signature-verification]] the signature!</p>'}) %> h2. Download other versions diff --git a/pages/signature-verification/en.text b/pages/signature-verification/en.text index f00d8a5..90eea36 100644 --- a/pages/signature-verification/en.text +++ b/pages/signature-verification/en.text @@ -2,6 +2,8 @@ Many of the files available for download from this site have been signed. This page will walk you through what you need to do in order to verify these signatures. This process is entirely optional. +NOTE: Installation of Android and Mac apps will have their signatures verified automatically. However, we provide signatures for these files if you wish to verify them manually with the process below. + h2. Import LEAP's key All the files have been signed with the "LEAP archive signing key". The first step is to import this key into your local keyring. These instructions will use @gpg@, a free implementation of OpenPGP that works on Mac, Windows, and Linux. |