[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Hash algorithms used by APT to verify authenticity of installed files.

Tomasz Wozowicz <zirconiumnzinc@gmail.com> wrote:

It doesnt say what  will happen if the expected hash is unavaible-
maybe it will just use weaker hash as fallback? I think  that issues
regarding security should be descriped clearly and exhaustively.

Try to install or upgrade Chrome having set to sha256. Upgrade fails, so it does'nt fall back :)


Reply to: