[Github-comments] [geany/geany] Installer Malware (#978)
elextr
notifications at xxxxx
Thu Apr 7 01:06:36 UTC 2016
...
> @elextr <https://github.com/elextr> what hashes do we need? We have MD5
> and SHA256 of the installer binary on download.geany.org, additionally
> the installer and all binaries included (except MSYS2 provided, sort.exe
> and grep.exe) are digitally signed using a Microsoft tool, those signatures
> can easily be verified with Windows Explorer.
>
>
> Ok, all it needs is for the hashes to be linked from here
http://www.geany.org/Download/Releases like the source signatures are.
The only visible link from the releases page to the download page talks
about old versions, so I expect most users (and I) would not look on the
download page itself.
> You are receiving this because you were mentioned.
> Reply to this email directly or view it on GitHub
> <https://github.com/geany/geany/issues/978#issuecomment-206486006>
>
---
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/geany/geany/issues/978#issuecomment-206640632
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.geany.org/pipermail/github-comments/attachments/20160406/37deb648/attachment.html>
More information about the Github-comments
mailing list