Sudo is distributed in source and and binary package formats. For information on how the binary packages are built, see building packages. All source distributions and binary packages are signed with Todd’s PGP key. For .rpm and .deb packages, the signature is embedded in the package file itself. All other files use detached signatures (separate .sig files). Two keys are included in the file, the current pgp signing key with the fingerprint 59D1 E9CC BA2B 3767 04FD D35B A9F4 C021 CEA4 70FB ...
