Re: md5sums

On 1 February 2014 15:52, ToddAndMargo <ToddAndMargo(a)zoho.com <mailto:ToddAndMargo@zoho.com>> wrote: On 02/01/2014 10:01 AM, Kevin Fenzi wrote: On Fri, 31 Jan 2014 12:49:59 -0800 Tony Ewell <tmewell(a)zoho.com <mailto:tmewell@zoho.com>> wrote: Would you please consider adding the md5sums for the live cd download to the download page? http://spins.fedoraproject.__org/xfce/#downloads <http://spins.fedoraproject.org/xfce/#downloads> Fedora doesn't use md5sums anymore... You want: https://fedoraproject.org/__verify <https://fedoraproject.org/verify> That should have the sha256 checksums and how to verify them. kevin Hi Kevin, How about putting that link on the download site? I decided to give the new sums a spin. I got to $ curl https://fedoraproject.org/__static/fedora.gpg <https://fedoraproject.org/static/fedora.gpg> | gpg --import % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 100 22674 100 22674 0 0 12330 0 0:00:01 0:00:01 --:--:-- 76861 gpg: key 3AD31D0B: public key "Fedora-SPARC (15) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key DE7F38BD: public key "Fedora (18) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key A4D647E9: public key "Fedora Secondary Arch (18) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key FB4B18E6: public key "Fedora (19) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key BA094068: public key "Fedora Secondary (19) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key 246110C1: public key "Fedora (20) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key EFE550F5: public key "Fedora Secondary (20) <fedora(a)fedoraproject.org <mailto:fedora@fedoraproject.org>>" imported gpg: key 217521F6: "Fedora EPEL <epel(a)fedoraproject.org <mailto:epel@fedoraproject.org>>" not changed gpg: key 0608B895: public key "EPEL (6) <epel(a)fedoraproject.org <mailto:epel@fedoraproject.org>>" imported gpg: Total number processed: 9 gpg: imported: 8 (RSA: 8) gpg: unchanged: 1 After that, I could not figure out what they were talking about: $ gpg --verify-files *-CHECKSUM gpg: can't open `*-CHECKSUM': No such file or directory $ sha256sum -c 246110C1-CHECKSUM sha256sum: 246110C1-CHECKSUM: No such file or directory There isn't a file in the directory you are looking at with the correct names?

I think there is a missing step in that you need to wget the file wget https://fedoraproject.org/static/checksums/Fedora-Live-i386-20-CHECKSUM or whatever Fedora live you downloaded.. and then check.

Any idea what I am doing wrong? -T