I wish to download a file. Next to the download link, it displays the below MD5 hash along with a "signature" link which provides the below PGP signature. Three questions
- To test MD5, I do #md5sum MyS*, and then I check to make sure the hashes are equal using my eyes. Is it possible to include the hash off the website in the md5sum command and have it exit either yes or no?
- Should I use the MD5 or the PGP? EDIT. I've since seen SHA1. Which one to use of the three?
- How do I verify the file using the PGP signature?
GnuPG Signature of MySQL-5.6.12-1.el6.i686.rpm-bundle.tar
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (SunOS)
-----END PGP SIGNATURE-----