Wrong checksum on security.debian.org Squeeze source?

To: debian-security@lists.debian.org
Subject: Wrong checksum on security.debian.org Squeeze source?
From: Yves-Alexis Perez <corsac@debian.org>
Date: Mon, 25 Apr 2011 11:19:25 +0200
Message-id: <[🔎] 1303723165.2948.19.camel@hidalgo>

Hey,

it seems that there's an issue with the current security sources:

W: Failed to fetch
http://security.debian.org/dists/squeeze/updates/main/binary-amd64/Packages.bz2  Hash Sum mismatch

I get:

curl -s http://security.debian.org/dists/squeeze/updates/main/binary-amd64/Packages.bz2 |sha256sum
4f3f81320ab7aee3d84772940cb5c8604d0b758f56839dddf327cb105bb24f74  -

and:

curl -s http://security.debian.org/dists/squeeze/updates/Release |grep main/binary-amd64/Packages.bz2 |tail -n1
 a5a1aa63068f6176c543a70d0ba3c8768fdc46b4306a630e417ac3ba74470305    75040 main/binary-amd64/Packages.bz2


Same thing seems to happen with the other packages files.

That looks a bit concerning, can someone with access investigate the
issue and report back?

Regards,
-- 
Yves-Alexis

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Follow-Ups:
- Re: Wrong checksum on security.debian.org Squeeze source?
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Re: Hash algorithms used by APT to verify authenticity of installed files.
Next by Date: Re: Wrong checksum on security.debian.org Squeeze source?
Previous by thread: Re: Hash algorithms used by APT to verify authenticity of installed files.
Next by thread: Re: Wrong checksum on security.debian.org Squeeze source?
Index(es):
- Date
- Thread