On Fri, 10 Aug 2007 09:25:11 +0200, monikerd said: > However off course the md5 hashes don't really > say anything. Except that you would be able to > verify that your copy is the one you obtained. If you are unsure if your copy is the one you obtained, you have bigger issues. ;) An MD5 hash *will* however verify (to a fair extent, modulo intended attacks) if the copy you have is identical to the copy that was originally shipped (if they don't match, it shows that the copy you obtained isn't the one originally shipped). Yes, I'm splitting hairs here - but in cryptography, such hairs are often the basis of the security. So it's important to keep straight which bits are which....
Attachment:
pgpBTdNq0qR5A.pgp
Description: PGP signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/