From 184b615e8a727958c57cc572fd9e8f7ebfa80f76 Mon Sep 17 00:00:00 2001
From: Manuel Hiebel
Date: Tue, 9 Jul 2019 23:13:12 +0200
Subject: fix how to checksum and gpg (mga#24685)
also switch to a pool of gpg key server
---
en/downloads/get/index.php | 14 +++++++-------
1 file changed, 7 insertions(+), 7 deletions(-)
(limited to 'en')
diff --git a/en/downloads/get/index.php b/en/downloads/get/index.php
index ecb5f22cf..9b655177f 100644
--- a/en/downloads/get/index.php
+++ b/en/downloads/get/index.php
@@ -255,7 +255,7 @@ $sig_links = array();
foreach ($checksums as $checksum) {
if (isset($product[$checksum])) {
$sum_links[] = "" . basename($download) . ".$checksum";
- $chksm_cmd .= '$ ' . $checksum . 'sum ' . basename($download) . "\n" . $product[$checksum] . "\n" . PHP_EOL;
+ $chksm_cmd .= '$ ' . $checksum . 'sum -c ' . basename($download) . '.' . $checksum . ' # '. sprintf(_r('You need both iso and checksum file in the same folder')) . "\n" . basename($download) . ": OK \n" . PHP_EOL;
if (isset($product["$checksum.gpg"])) {
$sig_links[] = "" . basename($download) . ".$checksum.gpg";
}
@@ -267,23 +267,23 @@ $num_checksums = count($sum_links);
// only output for nontorrent DL and if there are any checksums files present
if ($num_checksums > 0 && !$torrent) {
_g('As soon as your download is complete, you should check that the checksums match:', null, 'p');
+ $checksum_links = array_to_list($sum_links, ' ' . _r('and', ' '), _r(',', ' '));
+ _g('Checksums are available for download as files:', null, ' ');
+ echo "$checksum_links.
";
echo PHP_EOL . '' . PHP_EOL;
echo '
' . PHP_EOL;
echo $chksm_cmd;
echo '
' . PHP_EOL . '
';
_g('If checksums do not match, DO NOT use this ISO. Double-check and try to download again.', null, ' ');
- $checksum_links = array_to_list($sum_links, ' ' . _r('and', ' '), _r(',', ' '));
$signature_links = array_to_list($sig_links, ' ' . _r('and', ' '), _r(',', ' '));
- _g('Checksums are available for download as files:', null, ' ');
- echo "$checksum_links.
";
?>
0) { // only output if there are any signatures files present ?>
MIT PGP Public Key Server:'), 'https://pgp.mit.edu/'); ?>
+echo sprintf(_r('First you need to import the "Mageia Release" key from a
MIT PGP Public Key Server:'), 'https://pool.sks-keyservers.net/'); ?>
-$ gpg --keyserver pgp.mit.edu --recv-keys EDCA7A90
+$ gpg --keyserver pool.sks-keyservers.net --recv-keys EDCA7A90
@@ -295,7 +295,7 @@ $ gpg --keyserver pgp.mit.edu --recv-keys EDCA7A90
-$ gpg --verify /your/download/location/.md5.gpg
+$ gpg --verify
--
cgit v1.2.1