On Wed, Feb 4, 2015 at 3:39 AM, might1 <might1@126.com> wrote:
>
> In my humble opinion, each vim ball that is for downloading should
> be provided its correspondent checksum of MD5 or SHA256 or like.
I added this to my routine, they'll be present from now on.
> And, the checksum should not go into a file to be downloaded and
> should be DIRECTLY displayed on download page, because if vim ball
> has been tainted by a middle man (like a mirror site), then the
> checksum file too.
The same entity serves the site and the files so there's no security advantage by making the checksum avialable either way.
> That is, can you construct such a compressed ball containing a number
> of files and directories amongst which one file contains the MD5 or
> SHA256 checksum of that compressed ball?
A recursive checksum? I wouldn't know how to do that.
--
Steve Hall [ digitect dancingpaper com ]
Cream for Vim | http://cream.sf.net
Steve Hall Architecture | http://SteveHallArchitecture.com
--
You received this message from the "vim_use" maillist.
Do not top-post! Type your reply below the text you are replying to.
For more information, visit http://www.vim.org/maillist.php
---
You received this message because you are subscribed to the Google Groups "vim_use" group.
To unsubscribe from this group and stop receiving emails from it, send an email to vim_use+unsubscribe@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment