MD5 and PGP signatures for downloaded files

Are there MD5 and PGP signatures of the downloads, similar to what openssh/openssl/Apache publish? How do I know the install package I just downloaded isn't a trojan?

I'll add the signatures soon. Meanwhile you can download the binary from several mirrors and compare them. They will be hardly hacked all. And if, the site with signatures will be too :-)

I've forgot that the MD5 signatures are still available in release notes. The link is just below the download section.

martin wrote:

I've forgot that the MD5 signatures are still available in release notes. The link is just below the download section.

==================


Quote :

Are there MD5 and PGP signatures of the downloads, similar to what openssh/openssl/Apache publish? How do I know the install package I just downloaded isn't a trojan?

Hi, Mr. prikryl :-)

I am a bit surprised to observe you did not responded since december 20 of yera 2004 (...) to this (yet simple) question....

Why ? You are neverthless active on the forum...
You have a nice package but how can you gain confidence if you don't respond to this question?

Thanks a lot for answer. adrian :-)

I have answered. The MD5/SHA1 sums are in the release notes.