-
Notifications
You must be signed in to change notification settings - Fork 237
Authenticity
Florian Keller edited this page Apr 12, 2019
·
10 revisions
You can check the authenticity of our Windows wrapper when you compare it's Certificate Fingerprint & File Checksum. These values are listed on our Download page.
Screenshot
certUtil -hashfile ./WireSetup.exe SHA256
Screenshot
Remove spaces from checksum: "ed a5 f6...".replace(/ /g, '');
Note
certUtil
is part of Visual Studio's "ClickOnce Publishing Tools".
The fingerprint does not change unless we use a new certificate. It can be verified using the the certificate details on WireSetup.exe
:
-
Import our PGP signing key to be able to verify the downloaded files
wget -q https://wire-app.wire.com/linux/releases.key -O- | gpg --import
-
Verify the checksum file's signature via gpg
gpg --verify sha256sum.txt.asc
-
Verify the downloaded files via checksum file
- macOS:
shasum -a 256 -c sha256sum.txt.asc
- Linux:
sha256sum -c sha256sum.txt.asc
- macOS: