On Jo, 20 dec 12, 15:14:25, Ralf Mardorf wrote: > On Thu, 2012-12-20 at 10:40 +0200, Andrei POPESCU wrote: > > MD5 is fine for integrity checks, just don't rely on it for security. > > I wasn't aware about this. However, I'm naive, I believe that the Linux > downloads are secure and I indeed use MD5 just to check integrity.
Don't worry too much about it. Unless you have a trust path (usually via some Debian Developer and the Debian keyring) to the key used to sign the file with the hashes there is anyway no reasonably secure method to ensure you got the right images. > Since > I'm a K3b users, the MD45 sum is very handy. I don't know if it's > possible to make K3b use something else but MD5 automagically. No idea, stopped using K3b a while ago. I usually try to stick with GTK apps only, to avoid installing also the QT libraries. So far I haven't done quite so good, but there is still hope :p Kind regards, Andrei -- Offtopic discussions among Debian users and developers: http://lists.alioth.debian.org/mailman/listinfo/d-community-offtopic
signature.asc
Description: Digital signature
