Commit Graph

95 Commits

Author SHA1 Message Date
Andrew David Wong
78b0742362
Replace RSK attributes in examples with variables
Users keep getting confused because their output doesn't match the
examples, even though the text already says, "This is just an example,
so the output you receive may not look exactly the same."

Recent examples of this:
- https://www.reddit.com/r/Qubes/comments/1f2b221/
- https://forum.qubes-os.org/t/29384

Specifically, users seem to get confused because their RSK has a
different date and key ID than the one in the example (which makes
sense, because RSKs change with each release), so replacing these
specific values with variables may avert some confusion.
2024-10-06 04:06:46 -07:00
Andrew David Wong
206f7f2086
Further clarify spaces in fingerprint
https://forum.qubes-os.org/t/23503
2024-01-05 19:58:32 -08:00
Andrew David Wong
cd529c91c3
Clean up text 2023-12-18 18:15:50 -08:00
Andrew David Wong
c3b7711fb3
Clarify explanation of comparing fingerprints 2023-12-18 18:08:46 -08:00
Andrew David Wong
a6fedbdd8a
Update RSK description to account for minor release keys 2023-06-02 17:59:35 -07:00
Andrew David Wong
13ccb403cb
Clarify language; shorten forum link 2022-09-12 23:51:47 -07:00
Andrew David Wong
fabed81d63
Move not-easily-convertible files to main repo; remove deprecated files
https://groups.google.com/g/qubes-devel/c/ASj7tehn1G0/m/jhLmFjdMBwAJ
2022-09-08 17:16:06 -07:00
Andrew David Wong
d38d625a82
Add link to XSA tracker 2022-08-06 10:18:34 -07:00
Andrew David Wong
f98469fbf6
Add note about sys-usb 2022-07-20 23:24:23 -07:00
Andrew David Wong
0cc7b4fe99
Explicitly state desired outcomes for the sake of completeness 2022-07-20 23:09:39 -07:00
Andrew David Wong
2e3c43c836
Cross-link installation guide and re-verification section 2022-07-20 22:56:56 -07:00
Andrew David Wong
3d08155ea9
Add section on re-verifying installation media after writing
Thanks to @HW42 and @marmarek for help with this command.
2022-07-20 22:42:37 -07:00
Andrew David Wong
3bee60ec01
Copyedit; wrap text 2021-11-30 03:12:56 -08:00
vladislav doster
29ed6e6e9b
(docs): update project-security/verifying-signatures.md
- use active voice where applicable
- add articles
- add `shell_session` to code fences to match document style
- reword phrases to increase readability & reduce verbiage
2021-11-28 13:00:47 -06:00
Andrew David Wong
0cca6ec53d
Explain "major version number"
https://forum.qubes-os.org/t/7027/
2021-10-20 08:42:22 -07:00
Andrew David Wong
8768e77f68
Standardize orthography 2021-08-07 05:24:55 -07:00
Andrew David Wong
fe0b333614
Standardize orthography 2021-08-07 05:22:47 -07:00
Andrew David Wong
0ff86df211
Standardize orthography 2021-08-07 05:03:00 -07:00
Andrew David Wong
c6cd68fad6
Fix typo; standardize orthography 2021-08-07 04:46:17 -07:00
Andrew David Wong
1c02142d7d
Add note about appropriate reports; improve organization 2021-08-07 04:06:16 -07:00
Andrew David Wong
3ccc966787
Start links at verbs to match link target content 2021-07-26 20:19:42 -07:00
Dave Smith
e5739da0f4
Resolve some of the #1184 requested changes. 2021-07-26 09:56:40 -05:00
Dave Smith
39926bd512
Correct spelling error that broke the first #1184 check 2021-07-26 00:05:15 -05:00
Dave Smith
f403800b6f
Avoid repeating the prereqs in the 'How to verify the [...] hash values' section...
...also make other minor improvements.
2021-07-25 23:41:00 -05:00
Andrew David Wong
0c048c58a0
Improve ordering, presentation, and organization of information
- Generalize "PGP key inclusion criteria" to "PGP key policies"
- Move key signing notice to new section
- Deduplicate key signing notice
- Convert bolded lines to headings
2021-07-24 11:29:34 -07:00
Andrew David Wong
f442af8486
Fix link 2021-07-20 06:00:51 -07:00
Andrew David Wong
0f7bc0d071
Update "Verifying signatures" and "Qubes security pack"
- Improve language
- Improve organization
- Fix typos
- Clarify steps in instructions
- Improve formatting
2021-07-20 03:47:59 -07:00
Andrew David Wong
54525b2e09
Update links; fix typo 2021-07-20 03:27:51 -07:00
Andrew David Wong
05dcacd7b5
Revamp "Verifying signatures" and "Qubes security pack"
- Standardize syntax, formatting, and orthography
- Update links
- Clarify and improve language
- Deduplicate content
- Add info regarding keys not directly signed by the QMSK
  (https://github.com/QubesOS/qubes-doc/pull/1180#discussion_r672939404)
- Add general info about digital signature use
- Improve page organization (#1179)
- Update info and instructions regarding the QMSK
- Miscelanneous fixes and improvements
2021-07-20 02:48:23 -07:00
Andrew David Wong
abdff3c88a
Merge branch 'master' of https://github.com/dksmiffs/qubes-doc into dksmiffs-master 2021-07-20 02:23:35 -07:00
Andrew David Wong
161ef060eb
Fix headings
See https://github.com/QubesOS/qubes-doc/pull/1180#issuecomment-883103461
2021-07-19 23:15:52 -07:00
Dave Smith
b59cbe5420
Add another possible reason for "WARNING: This key is not certified...
...with a trusted signature! There is no indication that the signature
belongs to the owner."

With this edit, I'm aiming to assist the beginner reader who walked the
following breadcrumbs:

Should I trust this website?
==> verify the PGP signatures on the commits and/or tags

Detailed steps suggested by the docs along these breadcrumbs:
1) `git clone git@github.com:QubesOS/qubesos.github.io.git`
2) Verify the PGP sigs on the commits and/or tags
  a) get properly validated GPG keys (available in the Qubes Security Pack)
    i.   `git clone https://github.com/QubesOS/qubes-secpack.git`
    ii.  `gpg --import qubes-secpack/keys/*/*`
    iii. Verify/trust the QMSK (details given on the page)
  b) `cd qubesos.github.io`
  c) `git verify-commit 45ca80e8` (one of Andrew's recent commits)

RESULT: The WARNING pops up, because the user has not yet ultimately PGP
  trusted Andrew's E11D 15C6 D204 3576 9FFA  A456 8CE1 3735 2A01 9A17
  key.
2021-07-20 00:27:09 -05:00
Dave Smith
9bb30e2205
Resolve grammatical error, return to "this verification" wording (#1179) 2021-07-18 22:37:53 -05:00
Dave Smith
c917f90792
Fix lost referent on "this verification" (#1179) 2021-07-17 10:29:48 -05:00
Dave Smith
a0b355b0c5
Move 'properly validated keys' guidance before git verification...
...in the "How to Verify Qubes Repos" section, since you must have
properly validated keys before being able to perform a successful
`git verify-tag` or `git verify-commit`.
2021-07-16 21:02:37 -05:00
Andrew David Wong
a18174dc5e
Fix capitalization; update terms (QubesOS/qubes-issues#6769)
Thank you to @unman for the initial sentence case pass.
2021-07-09 05:10:44 -07:00
unman
d0bc9e70a2
Sentence case for titles 2021-07-09 01:06:41 +00:00
Andrew David Wong
baa1df911c
Update Qubes Forum URLs 2021-07-01 07:03:05 -07:00
Andrew David Wong
a2e3dfe7a7
Document qubes-secpack PGP key inclusion criteria 2021-06-29 15:42:02 -07:00
Marek Marczykowski-Górecki
4017d11de3
Run script to add 'ref' parameters 2021-06-24 18:19:05 +02:00
Marek Marczykowski-Górecki
a45c7cb3c5
Fix core team link 2021-06-24 17:49:34 +02:00
Marek Marczykowski-Górecki
3806ecf338
Remove extra newlines at the beginning/end of files
Those are redundant, and yaml parser strips them in fact. By removing
them, loading and saving yaml file without any change indeed produce the
same output. This is useful for prepare_for_translation.py script (which
adds lang and ref tags) - to produce only change that indeed was made.
2021-06-24 16:07:23 +02:00
Andrew David Wong
4851518719
Improve wording 2021-06-24 05:35:40 -07:00
Andrew David Wong
06351f0ae0
Remove unnecessary "the" 2021-06-24 04:55:46 -07:00
Andrew David Wong
3a77787069
Update, add, and reorder links 2021-06-22 11:00:51 -07:00
Andrew David Wong
d145143261
Update Qubes Canary page link 2021-06-22 10:55:21 -07:00
Andrew David Wong
6cc2f9932b
Update QSB page link 2021-06-22 10:50:12 -07:00
Andrew David Wong
c161fdfa1d
Reorganize project security pages
- Redirect to templates in qubes-secpack
- Standardize titles and URLs
2021-06-21 21:36:06 -07:00
Andrew David Wong
bc138e0dc4
Update links 2021-06-20 21:54:36 -07:00
Andrew David Wong
07c130df00
Wrap text and miscellaneous cleanup 2021-06-18 06:25:06 -07:00