Hardware Reference
In-Depth Information
While this procedure adds a few steps, it should soon become second nature. If you don't
perform these steps, when there is a signature file available, you are assuming that the
software you downloaded is the software that was posted. Even though there are check-
sums built into the TCP, which you are using when you use wget , it does not guarantee
that the file is the correct file since there is an opportunity for a MITM attack. Regardless
of your paranoia level, it's good practice to verify the software each time. In fact, a quick
bash script will help here since it's standard practice to append .sig to the end of the file:
wgetsig(){
wget $1
wget $1.sig
fn=$(basename $1)
gpg --verify $fn.sig $fn
}
If you add that function to your .bashrc or equivalent, you can just type wgetsig
<url> to grab the file, the signature, and run them through GPG. Now that you can trust
that the software you downloaded is the software that was posted, you can finally extract
the package:
tar -zxvf znc-1.4.tar.gz
To build ZNC from source, you'll want to install the following dependencies:
sudo apt-get install libssl-dev libperl-dev
Most software tarballs support the confgure-make-make install dance and this
one is no different. You can build and install with the following:
cd znc-*
./configure
make
sudo make install
Building ZNC on the BBB will take a while because it will build each of the ZNC mod-
ules as well, so go enjoy some coffee.
Search WWH ::




Custom Search