On Wed, Sep 03, 2003 at 02:15:49PM +1200, Jason Haar wrote: > I think typing: > > lynx -source http://install.nessus.org | sh > > really isn't any more dangerous than the next option of downloading > nessus-installer.sh and running it. All are jointly affected by > man-in-the-middle attacks/etc. > > In fact, nothing short of signed (e.g. GPG) files really prove they haven't > been fiddled with...
There is a GPG-signed MD5 file next to nessus-installer.sh
