Checking ISO image

PaulF · November 25, 2024, 4:21pm

To check a Linux ISO image integrity, is the sha256 sum better than PGP fingerprint, or vice-versa, and why ?
Thanks,

phnx · November 25, 2024, 4:27pm

They serve different purposes: a SHA256 checksum only verifies the integrity of the file, while a PGP signature verifies both the integrity and authenticity (i.e. it is from the developer). Ideally, you should get the file and corresponding PGP fingerprint/checksum from two different places.

PaulF · January 12, 2025, 7:10pm

Once the system is installed, is it yet possible to ckeck the authenticity of the installation support from the system itself (and not from the USB stick) ?

Topic		Replies	Views
Kryptor and Signify, which is more secure to signing files? Questions software	0	97	September 13, 2024
Verifying Mozilla FTP firefox releases Questions	3	182	July 27, 2024
Live USB creator for Android Privacy software	10	570	January 7, 2024
Proton Calendar wrong SHA256 from website Questions	2	540	October 20, 2023
Picocrypt is finally getting a security audit! Privacy	21	1821	December 19, 2024

Checking ISO image

Related topics