File Integrity and Digital Code Signing
We are using a code signing certificate from Comodo. The lab128-vNNNN-setup.exe file is signed using Microsoft Authenticode technology. In order to check file integrity and authenticity, download it first (if you have old Windows before XP SP2, don't open it!), then in Windows Explorer right-click on the file and select Properties. Check under "Digital Signatures" to verify that the name of the signer is 128 Consulting. If you use Windows XP, SP2 or later, you will be presented with the signature automatically once the executable is started. For more details, see How Code Signing Works.
We are not signing the zip file, but the executable file lab128.exe inside the zip file is digitally signed,
so you can verify its integrity same way as described in the previous paragraph.
Optionally, you can check the integrity of the downloaded zip file by
calculating a checksum (hash value) of the file. We have included checksums
calculated by the popular SHA-1 and MD5 hash functions.
If you don't have the software to calculate the checksum, you can download GNU utilities for the Windows32 platform at www.gnupg.org:
|(file's signature: ftp://ftp.gnupg.org/gcrypt/binary/sha1sum.exe.sig)|
|(file's signature: ftp://ftp.gnupg.org/gcrypt/binary/md5sum-w32.zip.sig)|
Below is an example of how to calculate SHA-1 checksum of the lab128-v1640.zip file:sha1sum.exe lab128-v1640.zip