Technical Notes

Verifying Your Downloaded File
Technical Note 1988
Last Reviewed 25-Jul-2008
Applies To
Reflection for IBM 2007
All Reflection Products version 13.x or higher
Reflection for Secure IT version 6.1 or higher
Reflection for the Web 2008
Reflection for the Web version 8.5 through 9.x
Verastream Host Integrator version 6.0 or higher
Verastream Integration Broker version 9.8 or higher
Summary

Attachmate product files are provided with a digital signature or secure hash. This technical note describes how to verify a downloaded file is from the original publisher, complete, and unaltered.

Windows .exe Files

Follow these steps to verify the digital signature of a downloaded package file with a .exe extension:

1. Right-click the downloaded .exe file and click Properties.
2. Click the Digital Signatures tab. Note: If the Digital Signatures tab is not present, the file has been corrupted or altered, or is not digitally signed.
3. Select the "Attachmate Corporation" or "WRQ" signature in the list and click Details.
4. After the file has been read, you should see "Digital Signature Information: This digital signature is OK."

UNIX Files

Follow these steps to verify a secure hash value:

1. Note the SHA-1 hash (40 characters) or MD5 hash (32 characters) displayed on the Download Library secure web site prior to file download.
2. After downloading the file, run your UNIX sha1, md5, or hash command utility on the downloaded file to calculate its hash.
3. Verify the hash values from steps 1 and 2 match exactly. You may want to copy and paste the hash values into a text editor for easy comparison.

If the values do not match, your download may be incomplete or corrupted; try downloading again. If the values still do not match, contact Attachmate Technical Support.

Related Technical Notes

0200	Using the Attachmate Download Library (FAQ)
1925	How to Expand .zip UNIX Packages