Feature Requests item #1061119, was opened at 2004-11-06 07:23 Message generated for change (Settings changed) made by anadelonbrin You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=498106&aid=1061119&group_id=61702
Category: None Group: None >Status: Closed Priority: 5 Submitted By: Jesse Pelton (jessepelton) Assigned to: Tony Meyer (anadelonbrin) Summary: Provide verification and/or security measures for downloads Initial Comment: It would be a good idea (and not terribly difficult) to provide MD5 checksums for the various downloads so users can verify the integrity of their downloaded files. In the best of all possible worlds, there'd also be a way to check that the downloaded file was created by who its purported author, presumably by some sort of digital signature. I don't know if there are standardized ways to do this that are not burdensome, however. (Authenticode might be an option for the Outlook plugin.) If not, I'd recommend just providing MD5 sums. ---------------------------------------------------------------------- >Comment By: Tony Meyer (anadelonbrin) Date: 2004-11-30 19:07 Message: Logged In: YES user_id=552329 After suggestions from Anthony, the page is a little modified, but I'm willing to believe it's all correct now, so closing. (The instructions for putting out a release include this process now, so future releases should also have all of this done). ---------------------------------------------------------------------- Comment By: Jesse Pelton (jessepelton) Date: 2004-11-30 09:12 Message: Logged In: YES user_id=1130248 I checked spambayes-1.0.1.exe. The MD5 sum and file size match my results. The signature also looked OK, but I'm not an expert. The GnuPG documentation warns that "secure usage requires that YOU KNOW WHAT YOU ARE DOING." Maybe you should post a request for expert opinion on the SpamBayes list. Heaven knows you give enough help to have earned a little assistance. ---------------------------------------------------------------------- Comment By: Tony Meyer (anadelonbrin) Date: 2004-11-25 20:33 Message: Logged In: YES user_id=552329 Please see http://spambayes.org/download.html Is this correct? I've not done this before, so it may not be... there are PGP sigs, sizes, and MD5 checksums for each of the files. I would greatly appreciate feedback about whether this has been done correctly! ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=498106&aid=1061119&group_id=61702 _______________________________________________ Spambayes-bugs mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/spambayes-bugs
