Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I thought they were there for security; to check that the file hasn’t been tampered with. But surely if someone is capable of modifying the file then they are also capable of modifying the page with the hash!
What security does this actually offer?
They’re usually there just to ensure you got the download complete and correct.
It does help with one security-related issue: malicious modification happens as a result of a trojan running on the target machine inserting itself. This isn’t a “targeted” attack per se- the trojan just “infects” whatever exe’s it can- wouldn’t be smart enough to fix the hash.