[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: About creating .deb packages



also sprach Bernhard R. Link <blink@informatik.uni-freiburg.de> [2004.12.31.1254 +0100]:
> When they are generated at install time, there could be bit-switchers
> arising between unpacking them and calculating their checksums. Also
> the md5sum files would no longer have a canonical look.[1]

There could be a bit flip in the distributed md5sums, causing
a false alarm. md5sums is not supposed to guard against broken
hardware, the only cause I see for such bitflips.

If the md5sum of the DEB file validates against the Packages index,
the package is valid.

-- 
Please do not send copies of list mail to me; I read the list!
 
 .''`.     martin f. krafft <madduck@debian.org>
: :'  :    proud Debian developer, admin, user, and author
`. `'`
  `-  Debian - when you have better things to do than fixing a system
 
Invalid/expired PGP subkeys? Use subkeys.pgp.net as keyserver!

Attachment: signature.asc
Description: Digital signature


Reply to: