Hi,
I'm trying to verify the file at (1) with GPG.
From what I understand and according to (2) there is no signed checksum
file.
Still according to (2) the 'Release' file is to be downloaded along with
the signature file to do the verification step, then 'Release' grep or
alike is to be used to search for the SHA of (1).
I can't use 'sha256sum -c SHA256SUMS ('Lines improperly formatted')' to
checksum, is there a better approach to this?
1)
http://ftp.nl.debian.org/debian/dists/buster/main/installer-amd64/current/images/SHA256SUMS
2) https://wiki.debian.org/PXEBootInstall#Provide_the_boot_image
3) http://ftp.nl.debian.org/debian/dists/buster/
--
John Doe
