#1
|
|||
|
|||
![]()
Hi
I'd like to know how jdownloader works when doing updates. Does it force an https connection to the update site? Or does a digital signature verification? Verifying a checksum is not enough since over an insecure connection an attacker can spoof the checksum value. I've accidentaly updated jdownloader over an insecure connection and now I'm concerned about the possibility of malware injection. For those who think this is paranoia. It is not. It does happen. And has been the case for more than a decade. Example: **External links are only visible to Support Staff****External links are only visible to Support Staff** I tried searching the knowledge base but couldn't find anything. Any replies from the developers or link to docs or knowledge base is appreciated. Thanks |
Thread Tools | |
Display Modes | |
|
|