Off-Topic > Off-Topic - Tiny Core Lounge
Is md5 checksum that reliable ?
Pats:
--- Quote ---Last post by bmarkus on Today at 05:50:08 AM »
md5 with the tcz extensions has nothing to do with security which is a complex issue. It is to check integrity and detect file corruption.
--- End quote ---
..
--- Quote ---Last post by vinceASPECT on Today at 07:18:04 AM » would'nt implicitly refer tothe integrity a bit stream (as a packet of a file header)That sort of networking issue concerns hardware parity.
--- End quote ---
..Exactly ! That is what I want to convey . Unless and until , there is an installation problem , is there any need to use md5 or sha1 ? And how many actually use it , anyways ! ... And as explained by , Rich , if someone can replace the file , he can replace the corresponding .md5 file as well !
Rich:
Hi Pats
--- Quote from: Pats on July 28, 2018, 06:27:25 PM --- ... Unless and until , there is an installation problem , is there any need to use md5 or sha1 ? And how many actually use it , anyways ! ...
--- End quote ---
It is used by the Apps utility as well as the commandline utilities for extension loading/maintenance. So anyone using the supplied
tools for handling extensions uses it. If a download gets corrupted by a bit error you want to know it right then and there so you
can address the issue and resolve it. The purpose is to detect unintentional discrepancies, not thwart malicious troublemakers.
Pats:
--- Quote --- Last post by Rich on Today at 05:01:43 PM » The purpose is to detect unintentional discrepancies, not thwart malicious troublemakers.
--- End quote ---
I mostly use wget . AppBrowser is a nice tool ! I was not knowing that command-line tool automatically check md5 cs after downloading .
Since most of my apps-groups like Opera , Java , mySQL , compiletc etc are stable , working without glitches and I am not a frequent-flyer to try every new app and new version of TC on the repo , ... may be I am lucky not to face so many problems about installations after gaining decent knowledge here with TC Team !
But daily I get chance to refresh my linux know-how from many new members problems ... and think there is much more to learn from this new generation !
Thanks !
Pats:
--- Quote from: vinceASPECT on July 28, 2018, 10:18:04 AM --- Collisions would'nt implicitly refer to
the integrity a bit stream (as a packet of a file header)
That sort of networking issue concerns hardware parity.
--- End quote ---
.. And what does that exactly mean - in simple language ?
Pats:
Just out-of-curiousity asking , though chances are negligible but has Team TCL ever faced a Zero-day vulnarability problem during alpha , beta or after final release?
For those who dont know :
--- Quote --- A Zero-day or 0-day vulnarability is a computer-software vulnerability that is unknown to the developer and hckers can exploit it to adversely affect computer programs, data, or a network , until the developer come to know about it . And Day-Zero is the day on which the developer come to know about the vulnerability.
--- End quote ---
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version