Re: -- SPAM -- Integrity check of a downloaded with http-browser package.

To: debian-user@lists.debian.org
Subject: Re: -- SPAM -- Integrity check of a downloaded with http-browser package.
From: Ron Johnson <ron.l.johnson@cox.net>
Date: Mon, 27 Jul 2009 12:17:17 -0500
Message-id: <[🔎] 4A6DE11D.8070509@cox.net>
In-reply-to: <[🔎] 4a6dc6a7.0ab6660a.5acb.ffffd0f5@mx.google.com>
References: <[🔎] 4a6dc6a7.0ab6660a.5acb.ffffd0f5@mx.google.com>

On 2009-07-27 10:23, Sthu Deus wrote:

Good day.

I have downloaded a package from debian repo with my http browser. Now, how I
can check its integrity, that an evil doer did not modify it some malicious way
while the transfer?

Use "apt-cache show" to find the file's nominal hash, then runsha1sum to gen the real hash. If they match, it wasn't corrupted enroute.

(I'd worry more, though, about the repository machine getting hackedand the descriptions getting modified.)


--
Scooty Puff, Sr
The Doom-Bringer

Reply to:

References:
- Integrity check of a downloaded with http-browser package.
  - From: Sthu Deus <sthu.deus@gmail.com>

Prev by Date: Re: request for a mono vote.
Next by Date: Re: -- SPAM -- PSI does not let me chat with 'Not allowed' message.
Previous by thread: Integrity check of a downloaded with http-browser package.
Next by thread: PSI does not let me chat with 'Not allowed' message.
Index(es):
- Date
- Thread