As part of ongoing security efforts, we now provide a SHA-1 checksum and the file size of the release package in bytes for all of our new releases. Shadowbase users can now verify a downloaded release package is valid and corruption-free by:
For HPE Shadowbase Releases (sold by HPE):
For Gravic Shadowbase Releases (sold by Gravic) and Other non-HPE Releases (such as HPE TCD Releases):
All Shadowbase release packages are provided in Windows (.zip) file format.
The user must validate that their downloaded release package matches the published:
Validating file’s size (in bytes) can simply be done by looking at the folder’s properties.
Validating the file’s SHA-1 checksum requires users to run the following Windows CMD Prompt Command using the same Windows system the file was downloaded:
certutil -hashfile <downloaded filename> SHA1
Users must then ensure their downloaded file’s certutil-generated checksum value matches the published checksum value.
Note: The certutil command uses Microsoft’s Certificate Services to extract a file’s checksum in Windows environments; other SHA-1 checksum generation tools can be used to extract the downloaded file’s checksum values.
We are happy to discuss any questions that you may have; please reach out to us using your existing Support contact information.