Bitcoin Forum
November 18, 2024, 03:01:42 AM *
News: Check out the artwork 1Dq created to commemorate this forum's 15th anniversary
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: PPA vs. DEB install. Which is better for Armory & Bitcoin Core?  (Read 305 times)
matrix01 (OP)
Member
**
Offline Offline

Activity: 65
Merit: 30


View Profile
September 05, 2019, 01:50:17 AM
 #1

Fellow Forum Members,
I have a clean install of Ubuntu 18 on a brand new 2TB hard drive I bought for my new ARMORY ONLINE PC setup. The time has come to install the latest version for both Bitcoin Core and Armory. I hope someone would be so kind to clarify for me if it is best to install both Armory and Bitcoin Core using the PPA install process or is it better to use the traditional DEB install process?  Mainly, I would like to know if using the PPA install process will make my life easier as it relates to installing Armory and Bitcoin Core updates in the future?  In short, are Armory and Bitcoin Core designed to take advantage of the PPA install process?  Does PPA have any negatives?  

From what I gather the PPA install process requires I use the terminal commands shown below:
Code:
sudo add-apt-repository ppa:armory
Code:
sudo apt-get update
Code:
sudo apt-get install armory-installer

Do I need to make any changes to the code shown above?

Thanks in advance and I look forward to reading any opinions if the PPA installation process is the best installation process to use or if the traditional DEB install process is the best way to go.  
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 08:48:21 AM
 #2

don't do any of that IMO


1. Go to github.com/goatpig
2. find Amory
3. find downloads, download latest .deb and SHA256SUM file
4. find Goatpig's key, download and do: gpg --import goatpigs-key.asc (it's not called goatpigs-key, but something similar)
5. gpg --verify SHA256SUM  (it might be called SHA256SUM.asc, can't remember offhand)
6. sha256sum armory.deb
7. compare the output of sha256sum armory.deb with the line that says "armory.deb" in the SHA256SUM file (open SHA256SUM in text editor to do this)
8. if the hashes (long string of letters and numbers) match, dpkg -i armory.deb

I think the armory.deb you need will be the one with "GCC7" in the name

Vires in numeris
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 09:05:13 AM
Last edit: September 05, 2019, 09:17:52 AM by Carlton Banks
 #3

for bitcoin, it's kind of the same, just there is no .deb and a different website


  • go to https://bitcoincore.org/bin
  • download version of your choice (newest is generally best) and the corresponding SHA256SUM.asc file
  • Download the Wladimir van der Laan key (it's at https://bitcoincore.org, go to "Downloads" section)
  • gpg --import wladimirs-key.asc (again, it's called something different to that in reality)
  • gpg --verify SHA256SUM.asc
  • sha256sum bitcoin-whatever-version.tar.gz
  • compare the output of sha256sum bitcoin-whatever-version.tar.gz with the line that says "bitcoin-whatever-version.tar.gz" in the SHA256SUM file (open SHA256SUM in text editor to do this)
  • if the hashes (long string of letters and numbers) match, tar -xf bitcoin-whatever-version.tar.gz
  • sudo cp ./bitcoin-whatever-version/bin/bitcoin* /usr/bin
  • ***optional*** get the bitcoin.desktop file from https://github.com/bitcoin/contrib and sudo mv bitcoin.desktop /usr/share/applications, this will give you a desktop icon to click in your desktop menu

Vires in numeris
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 09:13:28 AM
 #4

what you're basically doing above is

  • checking that the list of "matching codes" you download is signed by the Bitcoin/Armory developers (the gpg --verify SHA256SUM.asc command)
  • checking the Bitcoin/Armory program you download matches the one from the developers (the sha256sum command)

once you've got Goatpig and Wladimir's keys in your online PC, you can skip that step in future

doing it this way is all about being very sure someone hasn't hacked the website you're getting Bitcoin/Armory from. As long as you've got the right key for Goatpig and Wladimir (and as long as those 2 keep their keys safe), then you can't accidentally download a fake version that steals all your money

Vires in numeris
bob123
Legendary
*
Offline Offline

Activity: 1624
Merit: 2481



View Profile WWW
September 05, 2019, 11:35:40 AM
Merited by Carlton Banks (2)
 #5

Carlton Banks pretty much explained everything, however if you are going to use your fresh Ubuntu install for more than just your online armory, i would install the package via apt-get instead of dpkg.

So, instead of:

8. if the hashes (long string of letters and numbers) match, dpkg -i armory.deb

you can do (when inside of the directory):
Code:
apt-get install ./armory.deb

It usually is recommended to stick with apt-get, because it doesn't just install a package, but also looks for dependencies since it is a package management software.
This makes it easier for you to remove or change packages later compared to simply just installing it using dpkg.

apt-get uses dpkg to install the package in back end, but has additional features (scanning for dependencies, notifying when they can be removed, etc.).

hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 12:27:26 PM
 #6

Interesting discussion. I have a follow-up question with regard to importing the gpg keys:

- on goatpig's github, I see goatpig-signing-key.asc under the PublicKeys section - is this correct?

- where do we find the correct spelling for the Wladimir van der Laan key? On the bitcoincore website, it references an ubuntu server "gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 01EA5486DE18A882D4C2684590C8019E36C2E964" do we run this on Debian?


"***optional*** get the bitcoin.desktop file from https://github.com/bitcoin/contrib"
good to know - I have been running ./bitcoin-qt to run core. It would be nice to have an applications link.
bob123
Legendary
*
Offline Offline

Activity: 1624
Merit: 2481



View Profile WWW
September 05, 2019, 12:36:47 PM
 #7

- on goatpig's github, I see goatpig-signing-key.asc under the PublicKeys section - is this correct?

Yes.



- where do we find the correct spelling for the Wladimir van der Laan key? On the bitcoincore website, it references an ubuntu server "gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 01EA5486DE18A882D4C2684590C8019E36C2E964" do we run this on Debian?

Yes, you can run this on debian.



good to know - I have been running ./bitcoin-qt to run core. It would be nice to have an applications link.

You can create a shortcut running any command with any parameter you wish.
What DE are you using ?

Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 01:03:00 PM
 #8

you can do (when inside of the directory):
Code:
apt-get install ./armory.deb

It usually is recommended to stick with apt-get, because it doesn't just install a package, but also looks for dependencies since it is a package management software.

didn't know this, good job bob123

Vires in numeris
hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 01:16:14 PM
 #9

"You can create a shortcut running any command with any parameter you wish.
What DE are you using ?"

Thanks bob123 - I'm not sure what this means.  By DE, do you mean which Debian? Specifically PureOS by Purism. Core 0.18.1.

Side note - how do you make that nicely quoted box when replying to people on this forum?
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 02:23:57 PM
 #10

By DE, do you mean which Debian? Specifically PureOS by Purism.

he means "Desktop Environment"

it's basically a bunch of programs that provides you with the desktop graphics, and responds to you moving the mouse and clicking things (multiple different DE's are available for Linux, MacOS and Windows have only 1 possible DE)

for PureOS, I think it's Cinammon, isn't it? Don't know tbh

Vires in numeris
hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 02:39:16 PM
 #11

Thanks Carlton - to my understanding, PureOS is a fork of Debian Testing.

Also, I ran "sudo dkpg -i armory.deb" on my online and offline computer to install armory.  Downloaded all required dependencies with "sudo apt install dependencies" for all required dependencies on the online computer, and then transferred them to the offline machine for install the same way.  Should I do the same thing in the future when upgrading Armory?

Really appreciate this helpful discussion!
bob123
Legendary
*
Offline Offline

Activity: 1624
Merit: 2481



View Profile WWW
September 05, 2019, 02:47:28 PM
 #12

Thanks bob123 - I'm not sure what this means.  By DE, do you mean which Debian? Specifically PureOS by Purism. Core 0.18.1.

A desktop environment is a window manager (as the name says, managing windows from programs you open) and a bundle of software (e.g. settings manager, network manager, text editor, etc..).

You can take a look here: https://itsfoss.com/best-linux-desktop-environments/ and check the pictures. Which seems to be the closest to your setup (specifically the task bar and start menu) ?

Generally there are multiple ways to create a clickable shortcut, the easiest probably should be to right-click on the desktop and choose something like create shortcut.
If you can provide us the name of your DE, we can give you a more detailed instruction.



Side note - how do you make that nicely quoted box when replying to people on this forum?

You can click Quote at the top right corner of a post, to quote it:





Should I do the same thing in the future when upgrading Armory?

If new dependencies are required, then yes.
Otherwise you don't have to transfer anything to your offline machine (except for the armory upgrade of course).

hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 02:56:46 PM
 #13

Thanks bob123 - I'm not sure what this means.  By DE, do you mean which Debian? Specifically PureOS by Purism. Core 0.18.1.

A desktop environment is a window manager (as the name says, managing windows from programs you open) and a bundle of software (e.g. settings manager, network manager, text editor, etc..).

You can take a look here: https://itsfoss.com/best-linux-desktop-environments/ and check the pictures. Which seems to be the closest to your setup (specifically the task bar and start menu) ?

Generally there are multiple ways to create a clickable shortcut, the easiest probably should be to right-click on the desktop and choose something like create shortcut.
If you can provide us the name of your DE, we can give you a more detailed instruction.

Oh, ok - PureOS uses GNOME.

Side note - how do you make that nicely quoted box when replying to people on this forum?

You can click Quote at the top right corner of a post, to quote it:

https://i.imgur.com/9shggKV.png

Nice - thanks

Should I do the same thing in the future when upgrading Armory?

If new dependencies are required, then yes.
Otherwise you don't have to transfer anything to your offline machine (except for the armory upgrade of course).

Great.
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
September 05, 2019, 03:01:03 PM
 #14

Thanks Carlton - to my understanding, PureOS is a fork of Debian Testing.

well, no!

Debian is the underlying OS. It doesn't need to have mouse pointers and windows, Debian (and all other Linux) is just a terminal, like the old MS-DOS, if you remember that, literally a black screen with a terminal prompt in the top left corner (scary!)

Debian lets you choose a different DE, they support about 4-5 different ones. Cinammon is a DE. xfce is my own personal fave DE, but it's down to personal choice.

Vires in numeris
hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 03:04:17 PM
 #15

Thanks Carlton - to my understanding, PureOS is a fork of Debian Testing.

well, no!

Debian is the underlying OS. It doesn't need to have mouse pointers and windows, Debian (and all other Linux) is just a terminal, like the old MS-DOS, if you remember that, literally a black screen with a terminal prompt in the top left corner (scary!)

Debian lets you choose a different DE, they support about 4-5 different ones. Cinammon is a DE. xfce is my own personal fave DE, but it's down to personal choice.

Thanks for clarifying - PureOS DE is GNOME.
bob123
Legendary
*
Offline Offline

Activity: 1624
Merit: 2481



View Profile WWW
September 05, 2019, 06:12:01 PM
 #16

Thanks for clarifying - PureOS DE is GNOME.

Check this site for how to create a shortcut on your desktop.
In the command field simply use the path to the binary followed by all parameters, for example:

Code:
/path/to/core --regtest

hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 08:01:51 PM
 #17

Thanks for clarifying - PureOS DE is GNOME.

Check this site for how to create a shortcut on your desktop.
In the command field simply use the path to the binary followed by all parameters, for example:

Code:
/path/to/core --regtest

Thanks, I'll review this information.
hieveryone123
Newbie
*
Offline Offline

Activity: 27
Merit: 3


View Profile
September 05, 2019, 08:25:11 PM
 #18

- where do we find the correct spelling for the Wladimir van der Laan key? On the bitcoincore website, it references an ubuntu server "gpg --keyserver hkp://keyserver.ubuntu.com --recv-keys 01EA5486DE18A882D4C2684590C8019E36C2E964" do we run this on Debian?

Yes, you can run this on debian.

Question: How do this gpg import process work? (gpg --import key.asc vs the above referenced ubuntu server way?) Where does this information get downloaded from in bother manners? My biggest focus is security - would it be best to do "gpg --import WladimirvanderLaankey.acs? (if so, where do i find the correct spelling?)

Thank!
matrix01 (OP)
Member
**
Offline Offline

Activity: 65
Merit: 30


View Profile
September 06, 2019, 03:35:52 AM
 #19

Thank you to all for all of the postings. The link below is the reason why I created this new topic:

https://itsfoss.com/ppa-guide/

Abhishek Prakash wrote this tutorial and according to the author PPA stands for "Personal Package Archive". Additionally, the author in his section titled, "Why PPA? Why not DEB packages?" writes the following:

"If you install a software using a DEB package, there is no guarantee that the installed software will be updated to a newer version when you run sudo apt update && sudo apt upgrade."

I do not claim to be an Ubuntu expert, however after reading that I couldn't help wondering if installing Bitcoin Core and Armory using PPA related terminal commands instead of using the traditional DEB install method was the smarter way to go. I may be wrong but the way I understand is using the PPA install method makes it easier to update your Bitcoin Core and Armory apps in the future.

Colton advises I don't do any of that and just go through the gpg --verify SHA256SUM.asc command process and then install the apps. I'm still trying to figure out that verification process because as I said I am not an Ubuntu expert.

Nevertheless, I was just seeking clarification on this Ubuntu software installation matter because I'm not clear if using the PPA method is supported by Bitcoin Core and Armory.  Any posts that can clarify this for me will be greatly appreciated.  Thanks in advance.
bob123
Legendary
*
Offline Offline

Activity: 1624
Merit: 2481



View Profile WWW
September 06, 2019, 07:56:26 AM
 #20

Question: How do this gpg import process work? (gpg --import key.asc vs the above referenced ubuntu server way?) Where does this information get downloaded from in bother manners? My biggest focus is security - would it be best to do "gpg --import WladimirvanderLaankey.acs? (if so, where do i find the correct spelling?)

The first way (gpg --import key.asc) imports an already downloaded key (which is on your hard drive now) into the pgp database.
The second command (gpg --recv-keys XXXXX) pulls the key with  the ID XXXXX from the keyserver you have specified with --keyserver or from the default one of your distro.

It doesn't really matter which way you choose, both have its pros and cons.
You just need to make sure that the source of your information is correct. This means if you download an .asc file, make sure you download it from the correct site.
And if you import it from a keyserver, makesure the ID you are using is coming from the correct source/website.



~snip~
"If you install a software using a DEB package, there is no guarantee that the installed software will be updated to a newer version when you run sudo apt update && sudo apt upgrade."
~snip~

I personally don't like PPA's either.

You could theoretically use them and wouldn't have much downsides.
But i would stick with the manual method.
Once you installed it, all you need to upgrade is to download the new .deb-file and run sudo apt-get install ./newDebFile.deb.

The statement is comparing PPA's to the distros repository (installing packages via apt-get install xxx from the official distro repository).
That's not what you are doing currently, you are downloading the .deb files yourself.

Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!