diff --git a/docs/FAQ/FAQ-Installation.md b/docs/FAQ/FAQ-Installation.md index 30117cbf7..5aff55e68 100644 --- a/docs/FAQ/FAQ-Installation.md +++ b/docs/FAQ/FAQ-Installation.md @@ -29,7 +29,7 @@ Wasabi is tailor made so that you do **not** have to trust anyone, but you have With PGP signatures you can verify that the software package you download is actually the one published/signed by the developers. Every release of Wasabi is signed by the [zkSNACKs](https://zksnacks.com/) key, the company originally behind Wasabi. -You can verify that the PGP public key [${zksnacksPublicKeyFingerprint}](https://github.com/WalletWasabi/WalletWasabi/blob/master/PGP.txt) is actually the one of [zkSNACKs](http://pgp.mit.edu/pks/lookup?op=vindex&search=0x856348328949861E) by exploring the [web of trust](https://en.wikipedia.org/wiki/Web_of_trust). +You can verify that the PGP public key [${zksnacksPublicKeyFingerprint}](https://github.com/WalletWasabi/WalletWasabi/blob/master/PGP.txt) is actually the one of [zkSNACKs](https://pgp.mit.edu/pks/lookup?op=vindex&search=0x856348328949861E) by exploring the [web of trust](https://en.wikipedia.org/wiki/Web_of_trust). When you have a software package that was signed by this PGP public key, then you can be sure that this is an official release approved by the zkSNACKs key. This protects you against malicious man in the middle attacks where bad guys give you a fake version of Wasabi with malicious code.