[vikstrous4]

> Download the nginx secure key to verify the package

>

>cd /tmp/

>wget http://nginx.org/keys/nginx_signing.key

Verify a package with a key you got over http? Am I the only one who noticed this?

[EwanToo]

A bit silly yes, but nginx.org doesn't support https, which is slightly more silly and rules out most other options.

[Estragon]

What's the right way to do this?