Fedora Users — Re: problem with FC2-i386-DVD.iso

Re: problem with FC2-i386-DVD.iso

Date Prev

Date Next

Thread Prev

Thread Next

Date Index

Thread Index

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

Subject: Re: problem with FC2-i386-DVD.iso

From: Jeremy Brown <jeremy@xxxxxxxxxx>

Date: Tue, 25 May 2004 23:54:19 -0400

In-reply-to: <002e01c442d1$49a9cf40$6802a8c0@newhorizon>

References: <002e01c442d1$49a9cf40$6802a8c0@newhorizon>

Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

User-agent: Mozilla Thunderbird 0.5 (Windows/20040207)

Xinming He wrote:

I think I actually got the right file. The size of the original file should be 4,370,640,896. Previously I used Internet Explorer to see the file size in the file property. Clearly it gives a wrong number. But still we implicitely assume all mirrors sites are trustable and are properly protected. It is much better to use digital signature instead of md5sum to protect the integrity of the file.

Might be more of a topic for the dev list. FYI I understand that once you install though, individual RPM packages are signed with a Fedora-specific key, so any packages you obtain from mirrors post-install are guaranteed to be authentic.

Jeremy