 Working with Easyhash, Download Integrity |
Should you decide to use my software for generating and verifying HASH signatures, I will now show you how to make the best use of it to verify a signature and assess the integrity of your downloads. Use EasyHash not only for my software packages but whenever you download something. Don’t forget the following rule: trust only downloads that provide the producer's digital HASH signature. Now, let's see how to verify and evaluate my packages.
The following example tests and evaluates the Source Code Package of the secure data deletion software SecureDel:
 File: |  My HASH signatures: | Sourceforge HASH signatures: |
SRC-SecureDel-1.2.1.zip | MD5: 0DB7CDAF 659614C7 6D3E37BB 4D6516A6 | MD5: 0db7cdaf659614c76d3e37bb4d6516a6 |
Let's now see the steps to take:
Open EasyHash and click on the item called HASH Verify
Select, copy and paste one of the two signatures. In the example I chose the signature generated by Sourceforge- Now insert the downloaded file into the appropriate box of verify
Finally click on the button that starts the verify process
As you may have noticed from the few steps, the verification process is truly simple, as well as convenient and fast. Specifically, I chose to use additional HASH generation algorithms, but nothing prevents you from using just one algorithm as long as it is relevant to the verification you want to perform.
In particular, the result returned by EasyHash confirms the integrity and security of the downloaded file, as well as verifying the project's authorship. When downloading packages, whether they contain the program or the source code, perform the test I just explained before extracting them.
Get used to doing this not only with my software but with every package you download from the internet.
EasyHash was created and enhanced specifically to fulfill this very important task. Always be wary of packages that are not accompanied by the digital signature of the Software Developer!
Note: this does not imply that sites with independent downloads necessarily conceal malicious software in their packages, simply, when you download a package, always make sure to perform the test described above, remembering that my software is available for download from the official site, which is Sourceforge.In conclusion, I would like to point out to my kind visitors that all the compressed material you find on this site, whether it contains Software or Code Examples, has been digitally signed by myself with the appropriate HASH String. This is to offer users absolutely safe packages whose authorship is fully traceable. Thank you all for your kind attention!