reidtech wrote:The installer is not signed as past versions were and is delivered over plain http.
To verify download integrity, can we get a set of file hashes for the installer? Or could you verify these?
For the file: http://www.srware.net/downloads/srware_iron64.exe
- Size: 56893582 bytes
- CRC32: 97409233
- CRC64: BC06A2C5FFA6FF62
- SHA1: F7C56C2308CA80D4DBB252EF3D5E38351E61D5B9
- SHA256: 7222A8A122355EB5F5052F531870438DE04F390468A9749A28EC2BE9E267110E
These are the hashes I get, too. Which means the hypothetic attacker has control and gave me the same version as you. Or maybe nobody is interested in hacking srware Iron as we are 100 users in total in the whole world