Jeffrey Walton <[email protected]> writes: > https://www.debian.org/doc/manuals/securing-debian-manual/deb-pack-sign.en.html
That's all MD5. Looks like that document hasn't been updated for the last decade or so. "The Release files also include SHA-1 checksums, which will be useful once MD5 sums become fully broken, however apt doesn't use them yet." Today both MD5 and SHA1 are fully broken... /Simon
signature.asc
Description: PGP signature
