On Saturday, 1 October 2016 14:07:32 UTC+1, Arqwer wrote: > Documentation says to check digests after I verified an .iso with gpg. Why? > Doesn't correct PGP signature mean, that .iso is good and came from Qubes > developers?
Yes it does. Normally distros sign the digest. Qubes signs the iso. -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/7f23b737-4ed4-4718-bc1c-106228edf246%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
