GPG

Hosted Fermah GPG signing key for verification of our executed scripts.

Import Key

Download the key file and run this command:

gpg --import fermah-gpg.asc

This will import our key and will be useful for any future verifications.

Verify

All our scripts also have a .asc signature file alongside them. e.g. file install.sh will have install.sh.asc available.

gpg --verify install.sh.asc install.sh

Example for Install script

Here's an example for downloading both the signature and the script:

wget https://fermah-releases.s3.us-east-2.amazonaws.com/install.sh.asc
wget https://fermah-releases.s3.us-east-2.amazonaws.com/install.sh
gpg --verify install.sh.asc install.sh

If verification fails, you should not run the script file and contact us immediately.

The verification signature should display the email from one of our engineers.

PreviousRPC Reference NextSupport

Last updated 4 months ago