On 10/01/2016 09:07 AM, Arqwer wrote:
Documentation says to check digests after I verified an .iso with gpg. Why? Doesn't correct PGP signature mean, that .iso is good and came from Qubes developers?
Its really an alternative to gpg verification, not an additional step. The doc doesn't mention that.
Chris -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to qubes-users+unsubscr...@googlegroups.com. To post to this group, send email to email@example.com. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/c5c544c4-d32c-5096-0327-d17ec7730b27%40openmailbox.org. For more options, visit https://groups.google.com/d/optout.