F12 checksum is sha256 not sha1
Till Maas
opensource at till.name
Wed Nov 18 11:49:11 UTC 2009
On Tue, Nov 17, 2009 at 08:36:17PM -0500, Todd Zullinger wrote:
> people mistakenly assume that it does, unfortunately. Perhaps we need
> to make that clear on the /verify page so folks don't make the flawed
> assumption that these things are related?
It would also help to add an explanation about how to use the *-CHECKSUM
files within the checksum file, e.g. above the list of sha256 checksums.
Btw. for F11 there was also SHA256 used to gpg sign the files, but I do
not know, why this was changed back to SHA1. I reopened a bug report
about it:
https://bugzilla.redhat.com/show_bug.cgi?id=493126
Regards
Till
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 835 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-websites-list/attachments/20091118/b59bbb55/attachment.sig>
More information about the Fedora-websites-list
mailing list