Re: [Help-glpk] Trojan Horse in Gusek

help-glpk

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Help-glpk] Trojan Horse in Gusek

From:	Andrew Makhorin
Subject:	Re: [Help-glpk] Trojan Horse in Gusek
Date:	Wed, 07 Sep 2011 00:56:15 +0400

> > Where are these checksums provided? I didn't find them on the Gusek
> > project webpages. Are they calculated by sourceforge?
> > 
> > 
> > Andrew Makhorin
> > 
> 
> Hello Andrew,
> 
> Sourceforge provides checksums for all downloads.
> 
> See appendix
> 

Thank you very much for information.

It seems to me that it would be better to calculate the md5 check-sums
for .zip and .tar.gz on the developer's machine and provide them on the
project's webpage (or maybe provide gpg signatures, as used for all GNU
packages for last several years) along with a brief instruction (for MS
Windows users) about how to make sure that the distributed files have
been untouched. This is the only reliable way I know to protect files
against intentional/unintentional changes on distributing them over the
internet. Including in an anti-virus whitelist doesn't seem to me a good
idea.

Best regards,

Andrew Makhorin

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Help-glpk] Trojan Horse in Gusek, Andrew Makhorin <=
- Re: [Help-glpk] Trojan Horse in Gusek, Luiz Bettoni, 2011/09/07

Prev by Date: Re: [Help-glpk] type of variables
Next by Date: [Help-glpk] [Fwd: result.xlsx out with GLPK]
Previous by thread: [Help-glpk] variable with the same lower ans upper bounds
Next by thread: Re: [Help-glpk] Trojan Horse in Gusek
Index(es):
- Date
- Thread