Should not .torrent files be listed in SHA512SUMS et.al. ?

To: debian-cd@lists.debian.org
Subject: Should not .torrent files be listed in SHA512SUMS et.al. ?
From: "Thomas Schmitt" <scdbackup@gmx.net>
Date: Tue, 13 Feb 2018 15:41:14 +0100
Message-id: <[🔎] 29992774361654283926@scdbackup.webframe.org>

Hi,

after having looked at
  https://cdimage.debian.org/debian-cd/current/amd64/bt-dvd/
i wonder whether the .torrent files are sufficently signed on their own.
At least they are not listed in the *SUMS files.

Is this a similar security problem as with the .jigdo files ?

(I have no clue of BitTorrent. So a simple "Don't worry" would be enough.)


Have a nice day :)

Thomas

Reply to:

Follow-Ups:
- Re: Should not .torrent files be listed in SHA512SUMS et.al. ?
  - From: Steve McIntyre <steve@einval.com>

Prev by Date: Re: Packages for debian-8.8.0-amd64-netinst.jigdo are missing on fallback mirrors
Next by Date: Re: Should not .torrent files be listed in SHA512SUMS et.al. ?
Previous by thread: Re: Packages for debian-8.8.0-amd64-netinst.jigdo are missing on fallback mirrors
Next by thread: Re: Should not .torrent files be listed in SHA512SUMS et.al. ?
Index(es):
- Date
- Thread