1996-07-19 - Re: overseas PGPfone and Netscape

Header Data

From: Jeff Weinstein <jsw@netscape.com>
To: Ian Goldberg <iang@cs.berkeley.edu>
Message Hash: 86e0a6b4c6da814923f1982a96525c49deccc8155638ed5e4a17707c56f42267
Message ID: <31EF6237.180D@netscape.com>
Reply To: <01BB74A5.CDC6BC00@JPKroepfli.S-IP.EUnet.fr>
UTC Datetime: 1996-07-19 16:25:09 UTC
Raw Date: Sat, 20 Jul 1996 00:25:09 +0800

Raw message

From: Jeff Weinstein <jsw@netscape.com>
Date: Sat, 20 Jul 1996 00:25:09 +0800
To: Ian Goldberg <iang@cs.berkeley.edu>
Subject: Re: overseas PGPfone and Netscape
In-Reply-To: <01BB74A5.CDC6BC00@JPKroepfli.S-IP.EUnet.fr>
Message-ID: <31EF6237.180D@netscape.com>
MIME-Version: 1.0
Content-Type: text/plain


Ian Goldberg wrote:
> I haven't tried to download it myself, yet (I'm on the wrong side of a
> slow link <plug>(though it's faster since I got my new ZyXEL
> yesterday)</plug>), so maybe this is explained for me, but does netscape
> publish checksums for their US binaries?
> 
> This isn't just an issue of making sure your copy wasn't munged in transit;
> without checksums, what's stopping netscape from embedding the info you
> provide in the binary before shipping it to you, so that if it shows
> up on hacktic, they know who did it?
> 
> Could various people with various architectures post MD5 or SHA1 hashes
> of the files they downloaded?

  I'm sorry, but I don't have time to run the checksums right now.
Feel free to compare checksums of downloaded files.  You won't find
any secret tagging.  Note also that the download is via SSL.

	--Jeff

-- 
Jeff Weinstein - Electronic Munitions Specialist
Netscape Communication Corporation
jsw@netscape.com - http://home.netscape.com/people/jsw
Any opinions expressed above are mine.





Thread