Exactly my though Nathan. Thanks.

On Friday, March 30, 2012 2:55:17 AM UTC+2, Nathan Rajlich wrote:
>
> It's possible he means MD5 hashes. I've thought about this too; ideally 
> node-gyp would verify the tarballs it downloads with an MD5 hash.
>
> On Thu, Mar 29, 2012 at 5:49 PM, Bert Belder <[email protected]> wrote:
>
>> On Mar 29, 4:53 pm, Błażej Pawlak <[email protected]> wrote:
>> > Hi,
>> >
>> > Do you intend to sign the archives available for download from 
>> nodejs.org
>> > (sources, macos package, windows package, etc.) at some point?
>> > It would be great to ensure that everything is in order with the 
>> download
>> > :-)
>> >
>> > Cheers!
>> > Błażej
>>
>> The windows msi package and node.exe binary are already signed. I am
>> not sure how a signed source tarball would work.
>>
>> --
>> Job Board: http://jobs.nodejs.org/
>> Posting guidelines: 
>> https://github.com/joyent/node/wiki/Mailing-List-Posting-Guidelines
>> You received this message because you are subscribed to the Google
>> Groups "nodejs" group.
>> To post to this group, send email to [email protected]
>> To unsubscribe from this group, send email to
>> [email protected]
>> For more options, visit this group at
>> http://groups.google.com/group/nodejs?hl=en?hl=en
>>
>
>

-- 
Job Board: http://jobs.nodejs.org/
Posting guidelines: 
https://github.com/joyent/node/wiki/Mailing-List-Posting-Guidelines
You received this message because you are subscribed to the Google
Groups "nodejs" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/nodejs?hl=en?hl=en

Reply via email to