Do you have a hash of your install files?
I think it would be reassuring in light of recent events.
For the current release it's as detailed on the download page, in the "Verify Downloads" section.
Note that all the installers have been digitally signed for a long time.
It seems a bit strange that the SIGNATURES exist for the current releases only. Why not archive them for all releases right along with the installers?
I thought the download area used to have .asc or .sig files, but I may be imagining that.
The announcement of each version also has the hashes, see the announcement list archive.
Is it possible to publish the signatures file with each release set instead of only the signature file for the current main release?
Documented in User's Guide:
SIGNATURES files can be found at https://www.wireshark.org/download/src/all-versions/
To enter a block of code:
Comments
Thank you. I completely overlooked it on that page.