List a sha1 hash too for the downloads
Passed on from an email I got:
Please consider adding regular SHA-1 or MD5 hashes of the Vidalia bundle, instead of only using PGP signatures. There are allot of people who don't use PGP/GPG and still would like to be able to verify the authenticity of the different Vidalia bundle's. For instance place the hashes next to the "Sig" .asc file, on the main https://www.torproject.org/download.html page.
This is a good idea, but I'm not sure how to add them to the page without cluttering things up even more. Hm.
[Automatically added by flyspray2trac: Operating System: All]