Y
Hacker News
new
|
ask
|
show
|
jobs
by
clubm8
980 days ago
I wish more folks distributed Linux ISOs via Bittorrent since it has an integrity check built into the protocol -- messing with PGP is hard and showing me an MD5 sum over a self signed certificate is... just
special
.
2 comments
Bu9818
979 days ago
Instead of replacing the md5sum on the download page an attacker could replace the infohash/magnet link/.torrent file.
link
waynesonfire
979 days ago
messing with PGP is hard _FOR YOU_. Your inadequacies are not universal.
link