Hello dear MDL members, I remember about a year ago; if you downloaded a microsoft related iso file, you could go on the MSDN subscriber website and check the sha1sum of the iso files, but now it seems it is not a possibility anymore, cause I can't access the old MSDN subscriber website it seems. If you download an iso file from the internet, either from Microsoft servers themselves or from a third party web server, what is the best option to verify that the iso file is healthy and not tampered with along the way by some MITM attack? Is there some official place on Microsoft websites that provide the public with hash sums of the iso files? Because it seems Microsoft is only trying to help the spread of malware around the globe with this strategy.
@mkuba50 collected all sha-1 checksums available at MVS: https://forums.mydigitallife.net/threads/win-7-sp1-ultimate-iso-msdn-checksums.75673/#post-1390247
Thank you for the link, I checked the file, it has an amazing collection of the 'most frequently used' iso files and their hashes, very useful, but still it lacks a huge portion of some files. like this hash 'f9ffea3a40bf39ccde105bb064e153343560d73e' is not listed.
It should contain all files available on MVS (the iso is on MVS: en_windows_10_enterprise_version_1607_updated_jul_2016_x64_dvd_9054264.iso). I will ask @mkuba50 about it.