> However, if the upstream source only provides an md5 checksum, then we should use that checksum. There is no problem entering the correct checksums for a maintainer, so why is there so much discussion? ;-)