On Sun, Oct 29, 2000 at 03:52:40PM +0000, sena wrote: > Why not check the sums of the ISOs? I'm sure the site where you downloaded > them must have the md5sums for the ISOs...
Yes they do, and I have checked them. But this is putting an additional layer of trust into whoever created the ISO. That's really not satisfactory and doesn't give me a path of trust to the package maintainers. (Unless Debian post ISO md5sums on the site somewhere, against which I could compare the linuxiso sums... but I haven't seen this posted anywhere either... is it?)
