//Since you didn't enable email:
I'm gonna notify admin's here at LQ maybe they want to make a sticky in 'security'.
First of all GPG/PGP usage should be considered general knowledge and distributions that use GPG for security bulletin and package authenticity and integrity verification mention it in their docs and HOWTO's as well. Next to that most sites that provide packages that are signed (detached or not) provide details on how to verify those using the .sig file. Based on that I find stickying this information in the Linux Security forum not necessary. You are welcome to make it a Wiki entry or LQ HOWTO or article.
|