[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Dropping older, less-secure checksums files

On Tue, Jul 16, 2019 at 03:58:13PM +0100, Steve McIntyre wrote:
>Hey folks,
>We currently make 4 different checksums files for installer, live and
>openstack images published from cdimage.d.o (aka get.d.o, cloud.d.o):
>Prompted by a discussion on irc a couple of days back, I'm looking
>into dropping generation of the older, less secure MD5 and SHA1
>checksums. I'm planning on leaving these alone for existing releases,
>including for future stretch and buster point release builds. But for
>regular daily/weekly builds of testing/bullseye images, I'm going to
>drop the MD5SUMS and SHA1SUMS files.
>Shout now if you have a problem with that...

I've done the work needed in 3 repos and a test build is ongoing
now. Looks good so far...

Steve McIntyre, Cambridge, UK.                                steve@einval.com
"This dress doesn't reverse." -- Alden Spiess

Reply to: