jira-importer
jira-importer
**[Slawomir Jaranowski](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=slawekjaranowski)** commented Project issues moved to GitHub, please copy to it.
**[Michael Osipov](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=michael-o)** commented I concur to change this. Because this will deviate from the general habit we provide checksum files. They contain the checksum only. There is no canoncial checksum...
**[Michael Osipov](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=michael-o)** commented Can we close this? There is no canonical checksum output format.
**[Michael Osipov](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=michael-o)** commented Yet another ping...
**[Konrad Windszus](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=kwin)** commented ASF requires raw hashes: https://www.apache.org/info/verification.html#CheckingHashes
**[Christopher Tubbs](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=ctubbsii)** commented [Konrad Windszus](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=kwin) - The page you linked is an informational page, a "HOW TO" guide, not policy. Even if it were ASF policy, nothing in that page...
**[Michael Osipov](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=michael-o)** commented The linked paragraph by [Konrad Windszus](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=kwin), contains a lot of non-sense since checksum and hash are used interchangeably which is wrong. All of the checksums we provide...
**[Michael Osipov](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=michael-o)** commented I am quite certain that this will not change.
**[Tamas Cservenak](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=cstamas)** commented Agreed, please do not mix the two: md5/sha1 is used by resolver ONLY to eliminate transport corruption (bitrot). While SHA1 (and MD5) are deprecated in cryptography, this...
**[Tamas Cservenak](https://issues.apache.org/jira/secure/ViewProfile.jspa?name=cstamas)** commented Hm, after rereading original issue: "the created SHA512 which is used for the distribution area" – is it maybe us misinterpreting this? As it is not resolver...