Gunnar,
Thank you for the response. I did subsequently find and use that,
although it is not an HTTPS delivered resource. I also note the
availability of OpenPGP-signed hashes, although I think that is beyond
the capability of many if not the majority of "mainstream" Ubuntu users,
and I don't ha
2014-08-09:
I just went to verify my 14.04.1 downloads, and this is still an
outstanding issue. In my opinion, the issue should be higher priority.
Don't you want your users to be proactive and security-minded, checking
the validity of their downloaded (especially if e.g. torrented) files?
Entir