On 29/08/10 13:19, bendeguz wrote: > Hi, Andy! > > Where did you find boost checksum or signature. > Shouldn't be those on the website? I guess they should. > How did you check the validity of the downloaded source? > > Well, I've found it in portage tree, but AFAIK it's > not the developers sums, but the committer of the ebuild. > > Regards, > bendeguz
I hadn't noticed that it didn't have an md5sum. If I'm downloading from somewhere I trust like Sourceforge I tend not to worry about such things. I suppose they could be hacked and their files could be replaced with something malicious but if they did that, couldn't they just replace the md5sum on the download page as well at the same time? It seems to me that that sort of thing is quite rare; it's never happened to me so I don't worry about it. Andy -- http://linuxfromscratch.org/mailman/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
