Re: md5sums files

To: debian-devel@lists.debian.org
Subject: Re: md5sums files
From: Harald Braumann <harry@unheit.net>
Date: Wed, 3 Mar 2010 18:59:54 +0100
Message-id: <[🔎] 20100303175954.GD11984@nn.nn>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20100303161226.GB5184@osamu.debian.net>
References: <[🔎] 20100303020620.GA17083@celtic.nixsys.be> <[🔎] 20100303161226.GB5184@osamu.debian.net>

On Thu, Mar 04, 2010 at 01:12:26AM +0900, Osamu Aoki wrote:
>  
> > In this day and age of completely and utterly broken MD5[0], I think we
> > should stop providing these files, and maybe provide something else
> > instead.  Like, I dunno, shasums? Or perhaps gpgsigs? But stop providing
> > md5sums.
> 
> gpg is slow. sha variants will be nice if there is smooth transition in
> place properly planned and supprted with backported package of debsums.

You wouldn't sign each file, just the hash sums file.

harry

Reply to:

References:
- md5sums files
  - From: Wouter Verhelst <wouter@debian.org>
- Re: md5sums files
  - From: Osamu Aoki <osamu@debian.org>

Prev by Date: Re: md5sums files
Next by Date: Re: Removing the manpage requirement for GUI programs?
Previous by thread: Re: md5sums files
Next by thread: Re: md5sums files
Index(es):
- Date
- Thread