Download Portal file security
To verify the authenticity of files obtained from the Download Portal, we provide SHA-256 checksums that can be used to check if the files haven't been tempered during the download process.
Specifically, using an SHA-256 checksum allows you to:
Detect tampering: The most critical reason is to verify that the file hasn't been altered. By comparing checksums, you can confirm the file wasn't "tampered with" or maliciously modified by a third party during the download process.
Verify authenticity: It serves as a digital fingerprint. When the checksum you calculate on your computer matches the one displayed in the Download Portal, you have proof that the file is authentic and originates from the trusted source.
Ensure data integrity: Sometimes files get corrupted due to network issues or interrupted downloads. Checking the validity ensures the file is complete and functional before you try to run or install it.
To check the validity of a file from the Download Portal:
In the Download Portal, next to the file you downloaded, see the checksum number for the file.
Find the file path of your download:
On MacOS: Right-click the file, hold the Option key, and select "Copy [Filename] as Pathname".
On Windows: Hold the Shift key, Right-click the file, and select "Copy as path".
On your computer, calculate the SHA-256 checksum of the downloaded files:
In your command prompt or terminal run:
On MacOS:
shasum -a 256 /Users/YourName/Downloads/file.zip
On Windows:
certutil -hashfile "C:\Users\YourName\Downloads\file.zip" SHA256
On Linux:
sha256sum /home/YourName/Downloads/file.zip
Compare the checksum from your terminal with the one displayed next to your file in the Download Portal.
If checksums match, the file hasn't been tampered with during the download process and you can start using it.
If checksums don't match, don't use the file. Download the file again and repeat the verification process. If this continues to be an issue, report the situation to us by raising a Celopeers ticket: Contacting Support