[tz] GPG signatures... Re: [tz-announce] 2014g release of tz code and data available

Seán Coffey sean.coffey at oracle.com
Mon Nov 3 13:21:20 UTC 2014

thanks for fixing this up Paul. Can I raise another issue around the 
whole topic of bundle signatures. Do you offer any other integrity 
checks apart from GPG ? I ask since I'm looking for a simple mechanism 
to verify the bundle integrity and won't always have access to the GNUgp 
binaries. Are any MD5 or SHA256 digests available ?


On 15/10/14 19:02, Paul Eggert wrote:
> On 10/15/2014 10:01 AM, Seán Coffey wrote:
>> http://www.iana.org/time-zones/repository/releases/tzdata2014g.tar.gz.asc 
>> exists
>> http://www.iana.org/time-zones/repository/tzdata-latest.tar.gz.asc 
>> doesn't exist.
> Thanks, I'll see if I can get that fixed starting with the next 
> release (which should be reasonably soon).

More information about the tz mailing list