I am wondering if there are md5sum or gpg signatures for the download bits. Every time I download the Mozilla bit, I am not sure if this is the original one or something has been modified by someone in the middle. If you can provides such signatures for the bits, I will feel much more comfortable. For the rpm packages, a gpg signature will also be very helpful.
16 years ago
I can confirm there are no md5sum or gpg signatures. Can't find a dupe though
Bug 68079 requests for PGP (GPG) signatures for the release packages. Duping there. *** This bug has been marked as a duplicate of 68079 ***
Verified as a dupe of bug 68079