On 12/01/2015 20:34, Theo de Raadt wrote: >> Please how is one supposed to verify the integrity of an official >> OpenBSD 5.6 commercial CD set, bought on the OpenBSD store and >> received by physical mail? [...] > > Each directory on the CD is signed using signify and the 5.6 keys > listed at http://www.openbsd.org/56.html [...]
Thanks, but I was hoping for a method that would also verify the CD boot process, and that would not require downloading and installing a second image or trusting the CD to verify itself. On a side note, CD #2 (amd64, powerpc, song) includes more than 15Mb of space not directly allocated in files (excluding the audio track): # mount -o ro /dev/sr0 /mnt/cdrom # df -B KB /dev/sr0 Filesystem 1kB-blocks Used Available Use% Mounted on /dev/sr0 630047kB 630047kB 0kB 100% /mnt/cdrom # du -B KB -s /mnt/cdrom/ 614111kB /mnt/cdrom/ For the records: # sha256sum /dev/sr0 #CD1 a9958a206d7acb12a4b544f5df301261a92c4bec06b85c3964dd834ef622a22a # cat /dev/sr0 > cd2.iso #CD2 cat: /dev/sr0: Input/output error # du -b cd2.iso 630345728 # sha256sum cd2.iso 72f2201021168c9132bea3e6ebf1fe250b394528c3c766ace2556a614bc8dd7e # sha256sum /dev/sr0 #CD3 466e4f4c0506711bcbb4bd31601f0fb16c154df2e52c4d9596c9fa91efeddee4 Regards -- Enos D'Andrea
