(context post by d1337r)
Yeah… In earlier days, you could easily set an 8-letter Upper-Lower-Digit password and be sure no one will be interested in cracking it (which he will do for 30 days minimum). Now, we have Playstation 3’s and cloud services, and cracking that MD5 is a matter of minutes or hours. Now i’ll have to change every my password to something stronger.
BTW, SMF FTW, cause it uses SHA-256 instead of MD5.
Hashes are good but it’s already time to start doing gpg-signatures to tarball. Suffice it now to hack the site or even deception to obtain control over the wiki, put “fresh” version of the client and everything collapses.
For future reference, here’s my public key. It’s the same one that’s been there since the bitcoin.org site first went up in 2008. Grab it now in case you need it later.