Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Overview

For Universal Controller 7.6 7 and Universal Agent 7.6 7 forward, the installation packages are PGP-signed for security and authentication.

Verifying the files with digital signatures helps mitigate the risk of downloading and installing malicious or compromised software.

This page will show you how the signature interaction works and how you can verify the files once you download them.

Verifying PGP Signatures

Info

The example provided uses The GNU Privacy Guard. Any OpenPGP compliant program should work successfully.

Each package has a corresponding .asc file (detached signature). For example, the release universal-controller-7.67.0.0.zip has a corresponding file, universal-controller-7.67.0.0.zip.asc.

These instructions assume you have already downloaded both of these files. 

...

Code Block
languagetext
>gpg --verify universal-controller-7.67.0.0.zip.asc universal-controller-7.67.0.0.zip
gpg: Signature made 04/02/24 15:45:21 Eastern Daylight Time
gpg:                using RSA key 7870D479A577FCF6518A62CD2F768A37A6E81362
gpg: Good signature from "Stonebranch, Inc. <support@stonebranch.com>" [full]

...