The support source code may be corrupted
Lionel Bouton
lionel-subscription at bouton.name
Mon Aug 17 15:14:29 UTC 2015
Le 17/08/2015 16:33, chenzhiguang at nudt.edu.cn a écrit :
> Dear Zooko
>
> I downloaded the pyOpenSSL-0.13 from the website
> "https://tahoe-lafs.org/source/tahoe-lafs/deps/tahoe-lafs-dep-sdists/", but
> failed to decompress the tarball. I think the source code may be
> corrupted. Could you please check these tarballs?
Works here ("tar tf" on the downloaded file doesn't show any error).
The certificate for tahoe-lafs.org has the following SHA256 fingerprint :
34:22:BD:57:74:7C:3D:9C:23:AB:B5:5F:C5:6A:FB:43:82:EE:C5:34:C2:C7:C9:1A:33:F6:87:97:B0:FF:75:F5
You might want to check that there wasn't some tampering by comparing
the value above with the certificate you get (it's easy for governments
in control of a certificate authority to build man-in-the-middle attacks
and corrupt what you are downloading but the certificates they use don't
have the same fingerprints than the original ones).
Lionel
More information about the tahoe-dev
mailing list