Improved download readme.

doc/README-Download.md.tmpl

@@ -1,15 +1,8 @@
 {APPNAME} Downloads
 ======================
 
-{APPNAME} {VERSION} is available for download for Windows systems,
+{APPNAME} {VERSION} is available for download for Windows systems
-Unix systems and in source format.
+and in source format.
-
-The `.asc` are GPG signatures that you can use to verify the download.
-For example download the `.asc` file in the same directory as the
-`.tar.bz2` file and run `gpg --verify {APPNAME}-{VERSION}.tar.bz2`
-
-The GPG key used to sign these packages is 32EC6F3E. It can be
-downloaded with `gpg --keyserver wwwkeys.pgp.net --recv-keys 32EC6F3E`.
 
 Files
 ------
@@ -17,13 +10,23 @@ Files
 * {APPNAME}-{VERSION}.exe
   The Windows installer. If you run Windows, use this. The installer is
   signed with a local certificate signature.
-* {APPNAME}-{VERSION}-portable.zip
+* {APPNAME}-{VERSION}.tar.gz
-  The portable Windows installer. Use this, if you want to run {APPNAME}
-  from a USB stick or external hard drive.
-* {APPNAME}-{VERSION}.tar.bz2
   The source code. See `doc/install.txt` for compilation and installation
   instructions.
 
+The `.asc` are GPG signatures that you can use to verify that the
+download is indeed made by the owner of the GPG key below (ie. me).
+Download the `.asc` file in the same directory as the `.tar.gz`
+file and run `gpg --verify {APPNAME}-{VERSION}.tar.gz`
+
+The GPG key used to sign these packages is 32EC6F3E. It can be
+downloaded with `gpg --keyserver wwwkeys.pgp.net --recv-keys 32EC6F3E`.
+
+The `.sha1` files contain checksums that you can use to verify the
+file integrity. Download the `.sha1` file in the same directory as
+the `.tar.gz` file and run `sha1sum -c {APPNAME}-{VERSION}.tar.gz.sha1`
+
+
 Changelog for this release
 ---------------------------