http://bugzilla.opensuse.org/show_bug.cgi?id=965532 Bug ID: 965532 Summary: SHASUM doesn't match for openSUSE-Leap-42.1-DVD-x86_64.iso Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.1 Hardware: Other OS: openSUSE 13.1 Status: NEW Severity: Major Priority: P5 - None Component: Installation Assignee: yast2-maintainers@suse.de Reporter: richard@reallyrathergood.com QA Contact: jsrain@suse.com Found By: --- Blocker: --- Download both: openSUSE-Leap-42.1-DVD-x86_64.iso and openSUSE-Leap-42.1-DVD-x86_64.iso.sha256 The GPG signature on the .sha256 file checks out, but try computing the sha256 sum of the .iso and it doesn't match the one published in the .sha256 file. I have re-downloaded both files from two different UK mirrors with the same result. It occurred to me that the sha256 computation on my gentoo server might be wrong, so I double-checked using my openSUSE 13.2 installation, and the results are identical. The actual checksum computed for the currently published iso image is: bash# shasum -b -a 256 openSUSE-Leap-42.1-DVD-x86_64.iso d6e0bbc91611932f76d13d4e6ed8b02c423ced969fbd00d432acd0a33e2b096e *openSUSE-Leap-42.1-DVD-x86_64.iso I would check further afield, but downloading the DVD iso image takes me over two hours each time, so it's not really practical. It's amazing that nobody has reported this until now - just goes to show that not many people check the integrity of their download! -- You are receiving this mail because: You are on the CC list for the bug.