• AFF Home
• Announcements
• FAQ
• Products and Downloads
• Library Requirements
• Security
  • PGP Public Key
• Mailing lists
• About Us

AFFLIB is now signed with a GPG public key.

You can verify the public key by downloading both the release and the signature and then using the "gpg --verify" command, like this:

$ ls -l afflib-3.2.1.tar.gz*
-rw-r--r-- 1 simsong simsong 1758346 May 29 22:41 afflib-3.2.1.tar.gz
-rw-r--r-- 1 simsong simsong 72 May 29 22:45 afflib-3.2.1.tar.gz.sig
$


$ gpg --verify afflib-3.2.1.tar.gz.sig
gpg: Signature made Thu May 29 22:45:45 2008 PDT using DSA key ID 805B3DB0
gpg: Good signature from "AFFLIB Distribution (Simson L. Garfinkel)"
$


The SHA1 of the current release is:

32215cdcfcb61b6974d2611c951944796d6822d2