Hi, Am 04.10.2014 um 12:54 schrieb stef204: > What is the preferred way for me to proceed?
Use GPG to verify the integrity of the download and calculate the checksum locally for yourself. Users of your package have to trust you anyway, as you can basically do anything to your package, anyway. Best regards, Karol Babioch
signature.asc
Description: OpenPGP digital signature
