Verify Whonix ™ Images Software Signatures
Refer to the KVM Linux on the Command Line instructions.
It is impossible to
signify sign images (
libvirt.tar.xz) directly. [archive] You can only verify the
.sha512sums hash sum file using
signify-openbsd and then verify the image against the
Table: Whonix ™ VirtualBox Files
|Whonix ™ Version||Files|
|Whonix ™ VirtualBox CLI|
|Whonix ™ VirtualBox XFCE|
Codecrypt signatures are not yet available, but are planned long term.
Volunteer contributions are happily considered! If you were to contribute
codecrypt signature creation to the Whonix ™
prepare_release script [archive], then this feature could be provided much sooner.
If you would like to use codecrypt for software signature verification, please consider making a report in the Whonix codecrypt forum thread [archive]. This method might be supported sooner if there is sufficient interest.
- Download the Whonix ™ Signing Key
- Verifying Software Signatures
- Placing Trust in Whonix ™
- OpenPGP key distribution strategies
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation. Policy of Whonix Website and Whonix Chat and Policy On Nonfreedom Software applies.
The personal opinions of moderators or contributors to the Whonix ™ project do not represent the project as a whole.