Next: Usage, Previous: Why I created it?, Up: tofuproxy
Download the tarball with the signature from website and build it. You need more or less modern Go and C-compiler with libzstd headers if you need WARCs support.
$ [fetch|wget] http://www.tofuproxy.stargrave.org/download/tofuproxy-0.6.0.tar.zst
$ [fetch|wget] http://www.tofuproxy.stargrave.org/download/tofuproxy-0.6.0.tar.zst.{asc,sig}
[verify signature]
$ tar xf tofuproxy-0.6.0.tar.zst
$ cd tofuproxy-0.6.0
$ ./build
| Version | Date | Size | Tarball |
|---|---|---|---|
| 0.6.0 | 2024-04-21 | 651 KiB | meta4 tar pgp ssh |
| 0.5.0 | 2024-04-18 | 651 KiB | meta4 tar pgp ssh |
| 0.4.0 | 2023-08-12 | 673 KiB | meta4 tar pgp ssh |
| 0.3.0 | 2023-08-11 | 672 KiB | meta4 tar pgp ssh |
| 0.1.0 | 2023-03-20 | 672 KiB | meta4 tar pgp ssh |
You have to verify downloaded tarballs authenticity to be sure that you retrieved trusted and untampered software. There are two options:
Use GNU Privacy Guard free software implementation. For the very first time it is necessary to get signing public key and import it. It is provided here, but you should check alternate resources.
pub ed25519/0x5921D596A332F844 2023-08-11
3477 D329 2C77 5BF3 9DAA 0E07 5921 D596 A332 F844
uid tofuproxy releases <tofuproxy@stargrave.org>
$ gpg --auto-key-locate dane --locate-keys tofuproxy at stargrave dot org $ gpg --auto-key-locate wkd --locate-keys tofuproxy at stargrave dot org
Public key and its OpenPGP
signature made with the key above.
Its fingerprint: SHA256:NIDt9iZUizwivY3GoxmGvbQTH7mz/dmV7ZFOXeYfa2o.
$ ssh-keygen -Y verify -f PUBKEY-SSH.pub -I tofuproxy@stargrave.org -n file \
-s tofuproxy-0.6.0.tar.zst.sig <tofuproxy-0.6.0.tar.zst
Also there is Yggdrasil accessible address: http://y.www.tofuproxy.stargrave.org.