Silk Road forums

Discussion => Security => Topic started by: theonetheonlyandy on April 14, 2012, 11:59 pm

Title: checking Tor when downloading
Post by: theonetheonlyandy on April 14, 2012, 11:59 pm
the tor website says that the tor download comes with .asc that has the key to chek authentisityof the tor download but i kind seem to find it
Title: Re: checking Tor when downloading
Post by: mdmamail on April 15, 2012, 02:51 am
https://www.torproject.org/docs/verifying-signatures.html.en
Here's all the signing keys: https://www.torproject.org/docs/signing-keys.html.en

"Each file on our download page is accompanied by a file with the same name as the package and the extension ".asc". These .asc files are GPG signatures."

Beside the download link you'll see a clickable "sig"
Here's the windows one: https://www.torproject.org/dist/torbrowser/tor-browser-2.2.35-8_en-US.exe.asc

Erinn signs all the Tor Browser Bundle downloads.. assuming that's what you want just import the key: erinn@torproject.org

Title: Re: checking Tor when downloading
Post by: supersecretsquirrel on April 15, 2012, 04:38 pm
the tor website says that the tor download comes with .asc that has the key to chek authentisityof the tor download but i kind seem to find it

They're all on the website, and even inside the bundles. The ones inside the bundles can be a bit harder to find, depending on your operating system and how you extract.
Title: Re: checking Tor when downloading
Post by: theonetheonlyandy on April 17, 2012, 01:47 pm
i still cannot find the .asc it does not download with the tor bundle. am i doing something wrong?
Title: Re: checking Tor when downloading
Post by: supersecretsquirrel on April 17, 2012, 02:02 pm
i still cannot find the .asc it does not download with the tor bundle. am i doing something wrong?

It's inside the bundle, it can just be a bit difficult to find. How are you extracting the archive?

You can also get the .asc file from the website: https://www.torproject.org/dist/torbrowser/tor-browser-2.2.35-8_en-US.exe.asc
Title: Re: checking Tor when downloading
Post by: theonetheonlyandy on April 19, 2012, 06:30 pm
i just extract. theres really now way to do it differently.
Title: Re: checking Tor when downloading
Post by: supersecretsquirrel on April 20, 2012, 04:07 pm
i just extract. theres really now way to do it differently.

Using what? 7-Zip? Winrar? Winzip? Which option do you choose when you extract?
Title: Re: checking Tor when downloading
Post by: theonetheonlyandy on April 20, 2012, 04:43 pm
well i have winrar on my system. but i thought the one the you download uses its own type