Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi all! We have been experiencing an issue on site where threads have been missing the latest postings. The platform host Vanilla are working on this issue. A workaround that has been used by some is to navigate back from 1 to 10+ pages to re-sync the thread and this will then show the latest posts. Thanks, Mike.
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Help

  • 02-08-2010 5:24pm
    #1
    copz
    Registered Users Posts: 68 ✭✭


    Is there any way to check if a program has been tampered with before you download it.


Comments

  • #2
    Cork Skate
    Registered Users, Registered Users 2 Posts: 884 ✭✭✭Cork Skate


    copz wrote: »
    Is there any way to check if a program has been tampered with before you download it.

    Are you downloading it from a dodgy website? Why bother, save yourself the hassle and look for it elsewhere.


  • #3
    copz
    Registered Users Posts: 68 ✭✭copz


    Thats not what I mean, is it possible in some to verify the download.
    like inserting sypware in the code.


  • #4
    Snowbat
    Registered Users, Registered Users 2 Posts: 1,064 ✭✭✭Snowbat


    Most large download sites (like CNET) screen for malware and spyware and ensure that the software they distribute complies with their policies but there isn't any way¹ for *you* to check files before you download them.

    After download, there are possibilities. You could scan the file at http://www.virustotal.com/ (42 AV products) before running it. You could upload it to the Norman Sandbox and get a report about what the program does when it runs (such as trying to connect to external websites).

    You could md5sum the file and compare the checksum to one supplied by the publisher (and/or the checksum of a known-good copy). Many Linux distributions use GPG-signed packages and Package Managers that automatically check file integrity (md5sum) and authenticity (GPG signature) of downloaded packages before installation. In Windows, installers such as InstallShield and Windows Installer have an option for the publisher to digitally sign files with similar integrity and authenticity checks. However, these methods only protect distribution - if the publisher decides to do something nasty or loses control of their signing key, you're back to square one.



    ¹ If you had a shell on the server, you could ssh in and run md5sum or sha1sum on the file before you download it, but that kind of access is normally only available to the server owners.


  • #5
    copz
    Registered Users Posts: 68 ✭✭copz


    Thanks snowbat:)


Advertisement