X-Git-Url: http://www.git.cypherpunks.ru/?a=blobdiff_plain;f=doc%2Fintegrity.texi;h=5547ef9bc90cf89111ef0cb29ca8400af5963e36;hb=7058f97373b95cb0e19b48a424d95fc850614da8;hp=9ffcc0deb16d586456f512df9977027f02096976;hpb=1d2ce674b042d07fd9b37a46578c8b62bb0345b7;p=nncp.git

diff --git a/doc/integrity.texi b/doc/integrity.texi
index 9ffcc0d..5547ef9 100644
--- a/doc/integrity.texi
+++ b/doc/integrity.texi
@@ -1,11 +1,17 @@
 @node Integrity
+@cindex integrity check
+@cindex authenticity check
+@cindex OpenPGP
+@cindex gpg
+@cindex GnuPG
+@cindex WKD
 @section Tarballs integrity check
 
 You @strong{have to} check downloaded archives integrity and verify
 their signature to be sure that you have got trusted, untampered
 software. For integrity and authentication of downloaded binaries
 @url{https://www.gnupg.org/, GNU Privacy Guard} is used. You must
-download signature (@file{.sig}) provided with the tarball.
+download signature (@file{.asc}) provided with the tarball.
 
 For the very first time you need to import signing public key. It is
 provided below, but it is better to check alternative resources with it.
@@ -19,18 +25,18 @@ uid   NNCP releases <releases at nncpgo dot org>
 @itemize
 
 @item
-@verbatim
+@example
 $ gpg --auto-key-locate dane --locate-keys releases at nncpgo dot org
-$ gpg --auto-key-locate wkd --locate-keys releases at nncpgo dot org
-@end verbatim
+$ gpg --auto-key-locate  wkd --locate-keys releases at nncpgo dot org
+@end example
 
 @item
-@verbatiminclude .well-known/openpgpkey/hu/i4cdqgcarfjdjnba6y4jnf498asg8c6p.asc
+@verbatiminclude .well-known/openpgpkey/nncpgo.org/hu/i4cdqgcarfjdjnba6y4jnf498asg8c6p.asc
 
 @end itemize
 
 Then you could verify tarballs signature:
 
 @example
-$ gpg --verify nncp-@value{VERSION}.tar.xz.sig nncp-@value{VERSION}.tar.xz
+$ gpg --verify nncp-@value{VERSION}.tar.xz.asc nncp-@value{VERSION}.tar.xz
 @end example