On Wed, 5 Sep 2012 12:48:58 +0800, Rowdy OpenBSD wrote: >>>Is there any way to verify that distribution sets and packages that I >>>have downloaded have not been tampered with (e.g., by someone with >>>access to the mirror from which I downloaded them)? >>> >>>The package system supports signatures, but the packages distributed >>>on OpenBSD mirrors are unsigned, as is the SHA256 file in each >>>directory. >> >> Did you RTFA? > >I've read the FAQ. It says that the package system supports >signatures, but, as I wrote above, the packages distributed on OpenBSD >mirrors are unsigned. It doesn't say anything about signatures for >the distribution sets. > >Is there some other article that I should read that answers my questions? >
The A stands for Archives. Of this mailing list (and sometimes others - ports etc) See http://www.openbsd.org/mail.html which is really required reading for anyone using the lists. So Read The Friendly Archives...... *** NOTE *** Please DO NOT CC me. I <am> subscribed to the list. Mail to the sender address that does not originate at the list server is tarpitted. The reply-to: address is provided for those who feel compelled to reply off list. Thankyou. Rod/ --- This life is not the real thing. It is not even in Beta. If it was, then OpenBSD would already have a man page for it.
