صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
mirrors
/
borg
mirrorاز https://github.com/borgbackup/borg
2
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
شاخه: master
شاخه‌ها تگ‌ها
borg
/
docs
/
support.rst

support.rst 2.0 KB
لینک دائمی تاريخچه خام

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. .. _support:
    2. 

  2. 

  3. Support
    4. 

  4. =======
    5. 

  5. 

  6. Support and Services
    7. 

  7. --------------------
    8. 

  8. 

  9. Please see https://www.borgbackup.org/ for free and paid support and service options.
    10. 

  10. 

  11. 

  12. .. _security-contact:
    13. 

  13. 

  14. Security
    15. 

  15. --------
    16. 

  16. 

  17. In case you discover a security issue, please use this contact for reporting it
    18. 

  18. privately and please, if possible, use encrypted E-Mail:
    19. 

  19. 

  20. Thomas Waldmann <tw@waldmann-edv.de>
    21. 

  21. 

  22. GPG Key Fingerprint: 6D5B EF9A DD20 7580 5747  B70F 9F88 FB52 FAF7 B393
    23. 

  23. 

  24. The public key can be fetched from any GPG keyserver, but be careful: you must
    25. 

  25. use the **full fingerprint** to check that you got the correct key.
    26. 

  26. 

  27. Verifying signed releases
    28. 

  28. -------------------------
    29. 

  29. 

  30. `Releases <https://github.com/borgbackup/borg/releases>`_ are signed with the
    31. 

  31. same GPG key and a .asc file is provided for each binary.
    32. 

  32. 

  33. To verify a signature, the public key needs to be known to GPG. It can be
    34. 

  34. imported into the local keystore from a keyserver with the fingerprint::
    35. 

  35. 

  36.       gpg --recv-keys "6D5B EF9A DD20 7580 5747 B70F 9F88 FB52 FAF7 B393"
    37. 

  37. 

  38. If GPG successfully imported the key, the output should include (among other things)::
    39. 

  39. 

  40.       ...
    41. 

  41.       gpg: Total number processed: 1
    42. 

  42.       ...
    43. 

  43. 

  44. To verify for example the signature of the borg-linux64 binary::
    45. 

  45. 

  46.       gpg --verify borg-linux64.asc
    47. 

  47. 

  48. GPG outputs if it finds a good signature. The output should look similar to this::
    49. 

  49. 

  50.       gpg: Signature made Sat 30 Dec 2017 01:07:36 PM CET using RSA key ID 51F78E01
    51. 

  51.       gpg: Good signature from "Thomas Waldmann <email>"
    52. 

  52.       gpg: aka "Thomas Waldmann <email>"
    53. 

  53.       gpg: aka "Thomas Waldmann <email>"
    54. 

  54.       gpg: aka "Thomas Waldmann <email>"
    55. 

  55.       gpg: WARNING: This key is not certified with a trusted signature!
    56. 

  56.       gpg: There is no indication that the signature belongs to the owner.
    57. 

  57.       Primary key fingerprint: 6D5B EF9A DD20 7580 5747 B70F 9F88 FB52 FAF7 B393
    58. 

  58.       Subkey fingerprint: 2F81 AFFB AB04 E11F E8EE 65D4 243A CFA9 51F7 8E01
    59. 

  59. 

  60. If you want to make absolutely sure that you have the right key, you need to
    61. 

  61. verify it via another channel and assign a trust-level to it.
    62.