> > You mean the source files that you downloaded and then hashed... >
Yes. If the source files are being modified via a MITM attack (which is trivial if the host uses HTTP) the checksum is still useful.
Maxwell Anselm via arch-general Sat, 03 Dec 2016 20:38:43 -0800
> > You mean the source files that you downloaded and then hashed... >
Yes. If the source files are being modified via a MITM attack (which is trivial if the host uses HTTP) the checksum is still useful.