Welcome to CyanogenMod
|Welcome to our forum. Like most online communities you must register to post, but don't worry this is a simple free process that requires minimal information for you to signup. Be a part of the CyanogenMod Forum by signing in or creating an account. You can even sign in with your Facebook or Twitter account.
The Kernel Is A .tar.md5?
Posted 24 September 2013 - 03:50 AM
Posted 24 September 2013 - 05:04 PM
Posted 24 September 2013 - 08:18 PM
Hmm... that begs the question, does appending a checksum onto the distributed file give any security?
Posted 26 September 2013 - 04:48 AM
But if the download is coming from somewhere nefarious, they could change that attached md5 to one that matches a modified zip containing bad code. But (not to make you a paranoid tinfoil hat wearing person, and hopefully not to give you any ideas), the CM wiki is able to be modified by normal users (as long as they create an account, so there is at least a small amount of accountability). They could point it to a different file and then change the md5 on the wiki to match the file.