How do I get the checksum *securely* then? On Oct 12, 2014, at 23:00, Mauricio Tavares <raubvogel@xxxxxxxxx> wrote: > On Sun, Oct 12, 2014 at 10:52 AM, Ren Siyuan <netheril96@xxxxxxxxx> wrote: >> I am trying to download a version of OpenSSH newer than the one preinstalled with my OS. But sadly I find that I can only download it through *unsecured* plain http/ftp/rsync protocol, vulnerable to attacks by anyone in the network path. It is odd that *the* software about security and encryption across untrusted network is distributed to everyone insecurely and not encrypted. Is there any future plan to distribute OpenSSH over secured channel, such as https? > > Er, what about checksum? > >> _______________________________________________ >> openssh-unix-dev mailing list >> openssh-unix-dev@xxxxxxxxxxx >> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@xxxxxxxxxxx https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev