-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Files: http://downloads.sourceforge.net/project/ig-scripts/blackpac-1.0.1.sh http://downloads.sourceforge.net/project/ig-scripts/blackpac-1.0.1.sh.sig SHA256 sum for blackpac-1.0.1.sh: bf1dc7ca8bd58721f82086d3752d97e541b1f6ade0fbb9bb1895f19e9c3c8fc5 Homepage: http://igurublog.wordpress.com/downloads/script-blackpac/ Why Verify? Verifying the authenticity of downloaded files prior to installation is important to ensure that no one has tampered with the server holding the files. A PGP signature can be used to verify a file regardless of how the file or its signature was stored or delivered, as long as you have the correct key. Even if only a few people verify signatures and report bad signatures, this helps protect everyone by detecting tampering. The alternative is to risk problems as described in this link, where the invalid file was not detected for almost one year: http://forums.unrealircd.com/viewtopic.php?t=6562 The authenticity of blackpac-1.0.1.sh can be verified as follows: 1) If you don't already have IgnorantGuru's CURRENT key on your keyring: gpg --keyserver keys.gnupg.net --recv-keys 0x8835279A1936270694BE8B7C0EAEC485107165A1 You should visually verify that the shown fingerprint matches the one here: http://igurublog.wordpress.com/contact-ignorantguru/ 2) Download file, signature, and verify: wget http://downloads.sourceforge.net/project/ig-scripts/blackpac-1.0.1.sh wget http://downloads.sourceforge.net/project/ig-scripts/blackpac-1.0.1.sh.sig gpg --verify blackpac-1.0.1.sh.sig blackpac-1.0.1.sh This should report a good signature like this: gpg: Signature made using DSA key ID 107165A1 gpg: Good signature from IgnorantGuru (igurublog.wordpress.com) If a BAD signature is reported, please notify IgnorantGuru immediately so the file server can be checked. To install blackpac: sudo install blackpac-1.0.1.sh /usr/local/bin/blackpac Also be sure to install any required dependencies. See http://igurublog.wordpress.com/library/script-installation-instructions/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iF4EAREIAAYFAk1+IEgACgkQDq7EhRBxZaEmVAEArM5E99h71DKTvlrgEE1KJC/a iIuUtlwXWGKAHPUG46sBANFS90+SRHAKGckp9DKY2nppY72Vuj0ahhY9bc5VH5dV =HfzT -----END PGP SIGNATURE-----