There is no way to securely download the BitCoin application

[ikilled]

Dear authors of BitCoin,

I was trying to securely download the BitCoin application from BitCoin.org and I found no way of getting the EXE ot ZIP file securely:
- I tried going to: https://www.bitcoin.org - doesn't work
- I tried downloading from SoruceForge trough HTTPS  - doesn't work
- The EXE file (installer or the bitcoin.exe) is not digitally signed
- As far as I checked there is noSHA or MD5 hash/checksum posted securely either (on a verified HTTPS website)

So could somebody get the BitCoin application securely?
How can I check that my BitCoin EXE is not modified by an attacker?
Should I download and review the source code manually and then compile it by myself? :-)

I think this is a quite big flaw in all of this as by downloading the BitCoin application non-securely the user is prone to man-in-the middle attacks. The attacker could substitute the EXE or ZIP with a modified one which includes some malicious code.

I hope you will fix this issue soon.
If I am wrong and there's a way to download securely I apologize :-P
And please tell me how can I do it.

BTW: I love BitCoin project, I think it could be the best thing after the invention of the internet!

[1715588273]

1715588273

[1715588273]

1715588273

[1715588273]

1715588273

[chungy]

There is a SHA1SUMS.asc file which would do what you want: http://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.3.23/

Only I'm not sure who signs it, or where to get the key (hopefully on a keyserver such as pgp.mit.edu or similar).

[kerogre256]

yeh it stupid i post twice arledy about MD5 checke soom.

[Bastet]

You could always get the source code and compile yourself... 
But then you'd need to verify the source code, not an easy task.

[gpubitcoin]

I'm in the process of making a bitcoin related website and I've added some of the files (the main bitcoin client and some miners) for download directly from the site. I will be adding md5 hash sums of the files as I received them next to the download links but it would be nice if the main bitcoin site would release checksums so users can be sure of the authenticity of what they are downloading.

[MoonShadow]

Even if there were a secure summation available on the server, this doesn't tell you if the server itself has already be compromised and whoever inserted a malicious client didn't just do the same for the summation and alter the timestamps.  Ultimately you are going to have to trust someone.  It's because of this very issue that older Bitcoin clients persist upon the network.

[sunbird]

Even if there were a secure summation available on the server, this doesn't tell you if the server itself has already be compromised and whoever inserted a malicious client didn't just do the same for the summation and alter the timestamps.  Ultimately you are going to have to trust someone.  It's because of this very issue that older Bitcoin clients persist upon the network.

I was going to post on this topic and am glad that someone else is doing so.

The above is not a sufficient answer to this question. By the same rationale, you should never take any security measures because there are always countermeasures. No point in using https to connect to your bank since someone could have taken over the domain since you last logged in.

Moreover, since bitcoin is FOSS, it is quite likely that coders would notice a hash error if it was compromised. As it stands now, there is absolutely nothing stopping someone from distributing a fake btc client.

This is soooo easy to fix. The maintainers of bitcoin can post the SHA sum on the website, enable secure browsing, and sign the md5 sum with the gpg key of one of the developers (which likely has a long list of signatures to verify the authenticity). This would take all of five minutes...

[jackjack]

MD5?
I don't download binaries but I would prefer the devs use SHA* instead

[sunbird]

MD5?
I don't download binaries but I would prefer the devs use SHA* instead

Oops, yeah, should be SHA. I've corrected my post above. Thx.

But, frankly, I'd prefer MD5 to no hash at all...

[Maged]

Even if there were a secure summation available on the server, this doesn't tell you if the server itself has already be compromised and whoever inserted a malicious client didn't just do the same for the summation and alter the timestamps.  Ultimately you are going to have to trust someone.  It's because of this very issue that older Bitcoin clients persist upon the network.

I was going to post on this topic and am glad that someone else is doing so.

The above is not a sufficient answer to this question. By the same rationale, you should never take any security measures because there are always countermeasures. No point in using https to connect to your bank since someone could have taken over the domain since you last logged in.

Moreover, since bitcoin is FOSS, it is quite likely that coders would notice a hash error if it was compromised. As it stands now, there is absolutely nothing stopping someone from distributing a fake btc client.

This is soooo easy to fix. The maintainers of bitcoin can post the SHA sum on the website, enable secure browsing, and sign the md5 sum with the gpg key of one of the developers (which likely has a long list of signatures to verify the authenticity). This would take all of five minutes...

They already do just that.
http://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.3.24/ (see SHA1SUMS.asc)

[sunbird]

They already do just that.
http://sourceforge.net/projects/bitcoin/files/Bitcoin/bitcoin-0.3.24/ (see SHA1SUMS.asc)

Oh hey, thanks for locating that! However, the fact that this thread exists and that many people haven't found the sigs is a real problem.

The SHA hash should be on this page with the software https://bitcoin.org (which, by the way, won't load because they don't have secure browsing enabled, another problem), with the gpg signatures displayed on the page with the SHA hashes. For people who are only slightly paranoid, secure browsing provides _some_ level of assurance (yes, the site could be hijacked, but again, just because someone can pick the lock on your front door doesn't mean you should leave your door open). For those who are more paranoid, they can verify the signature and the hash.

Yes, I know that many people won't verify the information. But I would have, had I been able to locate it before. And there's no reason to bury it at sourceforge. At least put a link to the ASC file on the front page...

My $.02...