Providing a checksum without telling you how it was created

⁨199⁩ ⁨likes⁩

Submitted ⁨⁨3⁩ ⁨weeks⁩ ago⁩ by ⁨bleistift2@sopuli.xyz⁩ to ⁨mildlyinfuriating@lemmy.world⁩

https://sopuli.xyz/pictrs/image/4b815fc4-de6c-4b35-a153-90a0e1808870.webp

MD5? SHA1? We increase security by not telling you.

source

Comments

Sort:hotnew top

bufalo1973@piefed.europe.pub ⁨3⁩ ⁨weeks⁩ ago
Maybe it's the same for all checksums? They should get a prize if they did that.

source
- ryathal@sh.itjust.works ⁨3⁩ ⁨weeks⁩ ago
  The grand unified file.
  
  source
MTK@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
It’s not that uncommon because they have specific lengths, so usually just by the length you can know the checksum. Of course it’s not perfect, but for file verification it’s usually MD5, SHA1, or SHA256, so the length is enough to differentiate between them.

But yeah, dick move.

source
- bleistift2@sopuli.xyz ⁨3⁩ ⁨weeks⁩ ago
  It’s the first time I’ve seen it. Are we supposed to memorize the specific length of each hashing function now?
  
  source
  - MTK@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
    Cyberchef is your friend
    
    cyberchef.io
    
    Uss the magic module
    
    source
    -> View More Comments
  - Tenkard@lemmy.ml ⁨3⁩ ⁨weeks⁩ ago
    I’d just run the cli commands to check it
    
    md5 filename sha256 filename
    
    Etc.
    
    As the other user said it should be one of the main ones
    
    source
somerandomperson@lemmy.dbzer0.com ⁨3⁩ ⁨weeks⁩ ago
UBUNTU 20??!!!

That’s ancient. Not even LTS anymore.

What on earth are you downloading that needs this old software?

source
- bleistift2@sopuli.xyz ⁨3⁩ ⁨weeks⁩ ago
  It’s Audacity’s AppImage. The Mint repos are terribly outdated.
  
  source
  - MrSoup@lemmy.zip ⁨3⁩ ⁨weeks⁩ ago
    You better get Tenacity.
    
    source
  - toffi@piefed.social ⁨3⁩ ⁨weeks⁩ ago
    Isn't the unofficial successor tenacity since audacity partly switched to a closed/proprietary license?
    
    source
    -> View More Comments
  - NeatNit@discuss.tchncs.de ⁨3⁩ ⁨weeks⁩ ago
    Just out of curiosity: what do you need that the newer versions have but the version on Mint is missing?
    
    source
    -> View More Comments
  - frankenswine@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
    
    guix shell audacity – audacity
    
    to just use
    
    guix install audacity
    
    to install it
    
    source
    -> View More Comments
  - Mwa@thelemmy.club ⁨3⁩ ⁨weeks⁩ ago
    Try using audacity flatpak
    
    source
    -> View More Comments
- Greg@lemmy.ca ⁨3⁩ ⁨weeks⁩ ago
  Just install McAfee AND Nortons antivirus and everything will be fine
  
  source
betterdeadthanreddit@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
Dev must’ve thought the name meant a user was supposed to check some algorithms until they find a match.

source
bjoern_tantau@swg-empire.de ⁨3⁩ ⁨weeks⁩ ago
Love KDE’s Dolphin. In the file properties you can just paste a hash and it will check the correct one for you.

source
- JaxNakamura@programming.dev ⁨3⁩ ⁨weeks⁩ ago
  Thanks for pointing that out. I had no idea that was a thing.
  
  source
Sxan@piefed.zip ⁨3⁩ ⁨weeks⁩ ago
You're supposed to find out by trial and error. Ubuntu is gamifying security.

source
- bleistift2@sopuli.xyz ⁨3⁩ ⁨weeks⁩ ago
  This has literally nothing to do with Ubuntu.
  
  source
  - Sxan@piefed.zip ⁨3⁩ ⁨weeks⁩ ago
    You're right! Consequently, þe joke is even less funny.
    
    source
Magister@lemmy.world ⁨3⁩ ⁨weeks⁩ ago
not enough digits for md5, could be sha1 yes

source
- bamboo@lemmy.blahaj.zone ⁨3⁩ ⁨weeks⁩ ago
  Just did a test of the character counts for different algorithms, here’s the number of characters for each:
  
  Command Characters
  
  md5sum 32
  
  sha1sum 40
  
  sha256sum 64
  
  source

Command	Characters
md5sum	32
sha1sum	40
sha256sum	64