LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page How to Generate MD5SUMS.sign files while uploading ISO images
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 07-01-2008, 09:16 PM   #1
kushalkoolwal
Senior Member
 
Registered: Feb 2004
Location: Middle of nowhere
Distribution: Debian Squeeze
Posts: 1,249

Rep: Reputation: 49
How to Generate MD5SUMS.sign files while uploading ISO images

Hello,

I have created a few customized Linux ISO image CDs. Now I would like to upload them on my web server so that users can download it. I was able to generate MD5SUMS file which contains the MD5SUM checksum of all the ISO CDs. However I have also noticed on some Linux mirrors that there is another file called MD5SUMS.sign. For example on the Debian mirror:
http://cdimage.debian.org/debian-cd/4.0_r3/i386/iso-cd/

you can see the MD5SUMS.sign file. How can I create that?
 
Old 07-01-2008, 09:22 PM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
By digitally signing the MD5SUMS file using GnuPG.
 
Old 07-06-2008, 11:30 AM   #3
jamesapnic
Member
 
Registered: Jul 2008
Posts: 40

Rep: Reputation: 15
Hi there,

I thought I would just provide you with a bit more explicit information on this:

First set up gpg by running:

Quote:
gpg --gen-key
Go with the defaults they should be fine for your needs and then enter your details.

Now export your key, distribute this widely so that it can be verified. If you only place it on your website then it may be hard to verify that it hasn't been replaced and a new key used to sign the file.

Quote:
gpg –-armor -–export my@mail.com > key.asc
Now sign the file:

Quote:
gpg -a -s my.sum
A new file will be created called my.sum.asc, which is the ascii armours, i.e. human readable format of the signed md5sum.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
MediaWiki: Problem uploading images and files rushadrenaline Linux - Software 0 11-25-2007 12:47 AM
How do you merge 4 CD ISO images into one DVD ISO image? nsydenham Linux - Software 6 01-15-2007 09:49 AM
TRIPWIRE: Why do system files' md5sums change? krasl Linux - Security 3 03-06-2006 11:55 PM
Suggestion: Uploading product images and manuals to the HCL. h3rb1 LQ Suggestions & Feedback 4 02-10-2004 08:17 PM
Hi, Can I write files to mounted iso images? zhaoyoubing Linux - General 2 08-14-2003 12:05 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:36 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration