1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
<!DOCTYPE html PUBLIC "-//w3c//dtd html 4.0 transitional//en">
<html>
<head>
<link href="style.css" rel="stylesheet">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta content="text/html; charset=ISO-8859-1" http-equiv="content-type">
<title>DAR - Disk ARchive - Authentification page</title>
</head>
<body>
<div class=top>
<img alt="Dar Documentation" src="dar_s_doc.jpg" style="float:left;">
<h1>DAR's Authentication</h1>
</div>
<h2>PGP/ GnuPG key</h2>
<p>
GPG key has been renewed over time, the latest is the one to use to exchange data
with the author, while older keys are still necessary to validate the integrity
of older releases. Depending on the release time, the following keys have been used:
</p>
<dl>
<dt class=void>From April 2nd, 2002 to September 12th, 2012</dt><dd>
all released packages and communications have been signed with the following
<a href="old_dar_key1.txt">PGP public key</a>, having a fingerprint of
<code>3D7F 383C B41E 33D7 0250 A9AC A42E 4223 C818 1A52</code>
<br>
</dd>
<dt class=void>From September 13th, 2012 to January 5th, 2022</dt><dd>this
<a href="old_dar_key2.txt">PGP public key</a> was in use. It has
the fingerprint: <code>3B31 29AF 1DDD EFA5 A37D 818F 0831 B0BD 03D8 B182</code>
<br>
</dd>
<dt class=void>Since January 6th, 2022</dt><dd>this new key <a href="dar_key.txt">PGP public key</a>
is in use. It has the fingerprint: <code>1BE4 7606 A74F 178C 7328 43B0 5F64 5B19 16D5 6546</code>
</dd>
</dl>
<p>
The signature does only proves that Denis Corbin has personally
released the sources or binary package. This means there is no malicious code
inside the signed packages (If you trust him, of course).
</p>
</body>
</html>
|
