How to verify DMD download with GPG?
Era Scarecrow
rtcvb32 at yahoo.com
Mon Feb 14 18:12:25 UTC 2022
On Tuesday, 8 February 2022 at 10:17:19 UTC, Ola Fosheim Grøstad
wrote:
> I do like the idea that a hacker cannot change the signature
> file if gaining access to the web/file hosts, but how to verify
> it in secure way?
For Linux sources there's MD5 and SHA-1 hashes i believe. If you
have two or three hashes for comparison, the likelyhood of
someone changing something without those two changing seems
VEEEERY low.
More information about the Digitalmars-d-learn
mailing list