diracdeltas/https-everywhere-heartbleed.txt

## https-everywhere-heartbleed.txt
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

To check that you have a "good" copy of HTTPS Everywhere (one with the
correct update signing keys), you can do the following:


# Firefox:
1. Go to your Firefox profile directory:
https://support.mozilla.org/en-US/kb/profiles-where-firefox-stores-user-data#w_how-do-i-find-my-profile.
2. From there, go into ./extensions/https-everywhere at eff.org/
3. Open up install.rdf. You should see the following line:
 <em:updateKey>MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MR8W/galdxnpGqBsYbqOzQb2eyW15YFjDDEMI0ZOzt8f504obNs920lDnpPD2/KqgsfjOgw2K7xWDJIj/18xUvWPk3LDkrnokNiRkA3KOx3W6fHycKL+zID7zy+xZYBuh2fLyQtWV1VGQ45iNRp9+Zo7rH86cdfgkdnWTlNSHyTLW9NbXvyv/E12bppPcEvgCTAQXgnDVJ0/sqmeiijn9tTFh03aM+R2V/21h8aTraAS24qiPCz6gkmYGC8yr6mglcnNoYbsLNYZ69zF1XHcXPduCPdPdfLlzVlKK1/U7hkA28eG3BIAMh6uJYBRJTpiGgaGdPd7YekUB8S6cy+CQIDAQAB</em:updateKey>


# Chrome:
1. Go to your Chrome/Chromium profile directory:
http://www.chromium.org/user-experience/user-data-directory
2. From there, go into
./Extensions/gcbommkclmclpchllfjekcdonpmejbdp/ADDON_VERSION, where
ADDON_VERSION should be something like 2014.1.3_0.
3. Open up manifest.json. You should see the following value for "key":

"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MR8W/galdxnpGqBsYbqOzQb2eyW15YFjDDEMI0ZOzt8f504obNs920lDnpPD2/KqgsfjOgw2K7xWDJIj/18xUvWPk3LDkrnokNiRkA3KOx3W6fHycKL+zID7zy+xZYBuh2fLyQtWV1VGQ45iNRp9+Zo7rH86cdfgkdnWTlNSHyTLW9NbXvyv/E12bppPcEvgCTAQXgnDVJ0/sqmeiijn9tTFh03aM+R2V/21h8aTraAS24qiPCz6gkmYGC8yr6mglcnNoYbsLNYZ69zF1XHcXPduCPdPdfLlzVlKK1/U7hkA28eG3BIAMh6uJYBRJTpiGgaGdPd7YekUB8S6cy+CQIDAQAB"


(Note that the keys are the same. For reference, the sha1sum is
c33840b49a97cddc65e2c6bd312b2c6e7e6982e8.)
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJTQ0dsAAoJENC7YDZD/dnsmbsIAIc4QasF2K+iX6j0qyEfB3J2
nUuAkwWHLBLB6I0WD1qFlb19lVPuvovrjzcwIBBd+I5reGC39GKQ2UlCPE6zii9K
a0aCvuXaRoK9Ii1fzrSJSL3FDkO68zrhLMusYkCYLaGAXi7uxqQIT9/mrbqkOvN+
eXY8Sw88IPJy80WwCU/Cw5ZU+rVo3m1HgRcNjx6vn33NYBoHLbhp4T5/sIUgNgs5
5Gv3jf+ugpHnHaL6CMXqeAjqJ8jtv/DhyVoPIP7fBt5z5rspaFahzL77X/SC9M/6
YVmU67j/sROw+/dMjfZbs/xMNWyIfmjO4wwmE7j+dwUmhQHA+T3eAGpVn0N7eWM=
=58n5
-----END PGP SIGNATURE-----
	-----BEGIN PGP SIGNED MESSAGE-----
	Hash: SHA512

	To check that you have a "good" copy of HTTPS Everywhere (one with the
	correct update signing keys), you can do the following:


	# Firefox:
	1. Go to your Firefox profile directory:
	https://support.mozilla.org/en-US/kb/profiles-where-firefox-stores-user-data#w_how-do-i-find-my-profile.
	2. From there, go into ./extensions/https-everywhere at eff.org/
	3. Open up install.rdf. You should see the following line:
	<em:updateKey>MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MR8W/galdxnpGqBsYbqOzQb2eyW15YFjDDEMI0ZOzt8f504obNs920lDnpPD2/KqgsfjOgw2K7xWDJIj/18xUvWPk3LDkrnokNiRkA3KOx3W6fHycKL+zID7zy+xZYBuh2fLyQtWV1VGQ45iNRp9+Zo7rH86cdfgkdnWTlNSHyTLW9NbXvyv/E12bppPcEvgCTAQXgnDVJ0/sqmeiijn9tTFh03aM+R2V/21h8aTraAS24qiPCz6gkmYGC8yr6mglcnNoYbsLNYZ69zF1XHcXPduCPdPdfLlzVlKK1/U7hkA28eG3BIAMh6uJYBRJTpiGgaGdPd7YekUB8S6cy+CQIDAQAB</em:updateKey>


	# Chrome:
	1. Go to your Chrome/Chromium profile directory:
	http://www.chromium.org/user-experience/user-data-directory
	2. From there, go into
	./Extensions/gcbommkclmclpchllfjekcdonpmejbdp/ADDON_VERSION, where
	ADDON_VERSION should be something like 2014.1.3_0.
	3. Open up manifest.json. You should see the following value for "key":

	"MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MR8W/galdxnpGqBsYbqOzQb2eyW15YFjDDEMI0ZOzt8f504obNs920lDnpPD2/KqgsfjOgw2K7xWDJIj/18xUvWPk3LDkrnokNiRkA3KOx3W6fHycKL+zID7zy+xZYBuh2fLyQtWV1VGQ45iNRp9+Zo7rH86cdfgkdnWTlNSHyTLW9NbXvyv/E12bppPcEvgCTAQXgnDVJ0/sqmeiijn9tTFh03aM+R2V/21h8aTraAS24qiPCz6gkmYGC8yr6mglcnNoYbsLNYZ69zF1XHcXPduCPdPdfLlzVlKK1/U7hkA28eG3BIAMh6uJYBRJTpiGgaGdPd7YekUB8S6cy+CQIDAQAB"


	(Note that the keys are the same. For reference, the sha1sum is
	c33840b49a97cddc65e2c6bd312b2c6e7e6982e8.)
	-----BEGIN PGP SIGNATURE-----

	iQEcBAEBCgAGBQJTQ0dsAAoJENC7YDZD/dnsmbsIAIc4QasF2K+iX6j0qyEfB3J2
	nUuAkwWHLBLB6I0WD1qFlb19lVPuvovrjzcwIBBd+I5reGC39GKQ2UlCPE6zii9K
	a0aCvuXaRoK9Ii1fzrSJSL3FDkO68zrhLMusYkCYLaGAXi7uxqQIT9/mrbqkOvN+
	eXY8Sw88IPJy80WwCU/Cw5ZU+rVo3m1HgRcNjx6vn33NYBoHLbhp4T5/sIUgNgs5
	5Gv3jf+ugpHnHaL6CMXqeAjqJ8jtv/DhyVoPIP7fBt5z5rspaFahzL77X/SC9M/6
	YVmU67j/sROw+/dMjfZbs/xMNWyIfmjO4wwmE7j+dwUmhQHA+T3eAGpVn0N7eWM=
	=58n5
	-----END PGP SIGNATURE-----