Y
Hacker News
new
|
ask
|
show
|
jobs
by
im3w1l
4358 days ago
Downloading Tor from an inofficial source sounds like a recipe for trojans though... I don't think most people will have Erinn's signature to verify.
2 comments
dublinben
4358 days ago
It shouldn't matter where you're downloading the TBB binary, since you're going to verify the signature before trusting it, right? Surely you wouldn't just assume it was legitimate, and then install it.
link
JoeAltmaier
4358 days ago
Business idea: signature database with web interface. So download from anywhere, and look up the signature on the database to verify its authentic.
link