I’m trying to download the client software for MacOS + Apple Silicon (v1.3.4099.99).
The issue is the Pritunl.pkg file does not have a checksum on the company Website. I have not installed it because I don’t have anything to verify it against.
Does anyone know where I could find the checksum for the Pritunl.pkg file or any other way to determine the authenticity of the installer and contents?
The download links for Pritunl v1.3.4099.99 are available here https://github.com/pritunl/pritunl-client-electron/releases/tag/1.3.4099.99 all the hashes are available here pritunl-client-electron/SHA256 at master · pritunl/pritunl-client-electron · GitHub
I checked both the Pritunl.exe and Pritunl.pkg.zip from that release and the hashes are matching. The linux packages don’t have hashes available. All packages are signed and verified from the repo.pritunl.com server when installing with a package manager. But there is no option to validate the linux packages downloaded from the GitHub releases.
Thanks @zach for that information. I was able to check the Pritunl.pkg.zip file and that has matches. I then unzipped that package and Pritunl.pkg file appeared. The Pritunl.pkg file is what actually gave the checksum of 4b9db9adbcb5eea4be822d5b8f83c536a4e88b8361f87e9ea6c19fdebe979029. I apologize for the error in my original post.
The issue is the Pritunl.pkg file does not have a checksum on your pritunl-client-electron/SHA256 at master · pritunl/pritunl-client-electron · GitHub page. So, I was hesitant to install it because I couldn’t verify it.
I’m newer to this and I’m definitely open to learning, so please help me understand if I’m missing something.
I appreciate any help you can provide.
Thank you.
Thanks @williamclark. Adding @zach for awareness.
I realized that I made some misstatements in my initial question. I have since corrected the post based on my updated understanding of what is going on and what I’m looking for.
I am not looking for linux, just for macOS download.
I was provided with a GitHub repository and the Pritunl.pkg.zip file’s checksum matched what the company provided, so I downloaded it and unzipped it.
The Pritunl.pkg file appeared. I checked the hash for it and it is 4b9db9adbcb5eea4be822d5b8f83c536a4e88b8361f87e9ea6c19fdebe979029.
The issue is the Pritunl.pkg file does not have a checksum on the company Website. I have not installed it because I don’t have anything to verify it against.
Does anyone know where I could find the checksum for the Pritunl.pkg file or any other way to determine the authenticity of the installer and contents?
You can use wget from the terminal to download the file without macOS automatically extracting it then compare the hashes.