![]() If you are using GNU/Linux, then you probably already have GnuPG in your system, as most GNU/Linux distributions come with it preinstalled. ![]() In order to verify the signature you will need to type a few commands in a terminal window. How to do this will vary depending on your distribution. Uid Tor Browser Developers (signing key) Import the Tor Browser Developers signing key (0圎F6E286DDA85EA2A4BA7DE684E2C6E8793298290): gpg -auto-key-locate nodefault,wkd -locate-keys should show you something like: gpg: key 4E2C6E8793298290: public key "Tor Browser Developers (signing key) " imported The Tor Browser team signs Tor Browser releases. If you get an error message, something has gone wrong and you cannot continue until you've figured out why this didn't work. You might be able to import the key using the Workaround (using a public key) section instead.Īfter importing the key, you can save it to a file (identifying it by its fingerprint here): gpg -output. This command results in the key being saved to a file found at the path. tor.keyring doesn't exist after running this command, something has gone wrong and you cannot continue until you've figured out why this didn't work. To verify the signature of the package you downloaded, you will need to download the corresponding ".asc" signature file as well as the installer file itself, and verify it with a command that asks GnuPG to verify the file that you downloaded. The examples below assume that you downloaded these two files to your "Downloads" folder. Note that these commands use example file names and yours will be different: you will have downloaded a different version than 9.0 and you may not have chosen the English (en-US) version. \tor.keyring Downloads\torbrowser-install-win64-9.0_ Downloads\torbrowser-install-win64-9.0_en-US.exeįor macOS users: gpgv -keyring. Tor.keyring ~/Downloads/tor-browser-linu圆4-9.0_.asc ~/Downloads/tor-browser-linu圆4-9.0_ tor.keyring ~/Downloads/TorBrowser-9.0-os圆4_ ~/Downloads/TorBrowser-9.0-os圆4_en-US.dmgįor GNU/Linux users (change 64 to 32 if you have the 32-bit package): gpgv -keyring. ![]() Gpgv: Good signature from "Tor Browser Developers (signing key) " The result of the command should produce something like this: gpgv: Signature made 07/08/19 04:03:49 Pacific Daylight Time If you get error messages containing 'No such file or directory', either something went wrong with one of the previous steps, or you forgot that these commands use example file names and yours will be a little different. If you encounter errors you cannot fix, feel free to download and use this public key instead. Alternatively, you may use the following command: curl -s |gpg -import. If you're using MacOS or GNU/Linux, the key can also be fetched by running the following command: Tor Browser Developers key is also available on and can be downloaded from. In order to manage your bookmarks in Tor Browser, go to: $ gpg -keyserver -search-keys may also want to learn more about GnuPG.īookmarks in the Tor Browser can be exported, imported, backed up, restored as well as imported from another browser.
0 Comments
Leave a Reply. |