29
The Secret Maze of Debian Images
(blog.fai-project.org)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 20 Feb 2025
29 points (100.0% liked)
Linux
50377 readers
1224 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 5 years ago
MODERATORS
I stopped at "secret" (yes, the occurrence in the title) :)
TBH the checksums are pretty useless for humans who download an .iso and install it... they are mainly for mirrors and similar that download files without using them
Also: If someone manages to tamper with the downloadable ISO … they likely will be able to tamper with the signature files, too.
Yeah I think hashes in the same folder are only valuable as a check to make sure you downloaded the file successfully. Which isn't a big issue for at least the around 80% of internet users who have access to broadband. They are only useful for security if the hash is on the website that you click on and then you download and verify it manually.