Hi guys, checking the hashes (SHA256) for the file downloaded from the homepage and the one downloaded from the /changes page, it seems like they are not the same even though they should be for the same version of GlassWire (3.4.694). Any reason for that?
Thanks,
TO be honest its insane they haven’t gone way out of their way to address this or at the very least give some info on what’s going on. The fact they don’t even reply is a joke.
The version which is available to download from the main page is patched with utm tags. The original installer is available at the [change list page ]and its hash is equal to the one we publish.
Can’t post the link so just search this forum for “Glasswire install file not digitally signed and hash doesn’t match”
Hi JOSHM
Yes its very amateur and just throws confusion into the mix.
Looks like it was mentioned back on Sep 12
Maybe someone is smoking to much #
Im assuming glassware isn’t affiliated with the company. Just so I understand the company feels that I should be ok with the fact the installer I get doesn’t match the hash you have posted? Even though you explain the importance of verifying on your site? Also that same file when uploaded it to virus total it’s flagged and a 2 sandboxes as well report it as malicious. What are we talking about here? How hard is it to update your hases listed?
My issue isnt finding the correct installer its, why is this company providing download links that aren’t of hashed file and why are those files associated fairly closely with malware. If you go to glasswires site the first thing they show you is
and yet here we are.
Also why would UTM tags have any effect on the hash of the file?
Also just fyi they still haven’t allowed my post to go through showing its affiliation on virus totals graph platform.
No, i am just another user like yourself.
Maybe next year they might get it sorted with the Hash issue.
Hi @JOSHM,
as correctly pointed out, the only difference in versions is the UTM parameters we’re using.
Not sure about what malware you’ve seen but we’d be extremely happy to investigate the subject further.
We indeed are keen on security and privacy, and every little contribution will help improve our offer.
Would you mind reaching out with more details to help@glasswire.com, so we can dig deeper in the topic?
Thanks,
Andrea
Same thing with the latest release. The main download (Download Firewall Software by GlassWire) is 1K larger and doesn’t match the file hash on the change log page (GlassWire Software Version Changes List).
I would recommend downloading from GlassWire Software Version Changes List so that you can be sure that the file has not been tampered with or contain tracking markers.
yes @ittroll, the executable is dynamically tracked (so the hash change) to ease the life of our people in marketing 
Nothing major guys, it’s just a handful of meta parameters to let us have a better understanding of where our users find us.
As you correctly say, the version on the change log page doesn’t contain any parameter.
Nothing to worry about though, there is no risk of infection.
It’s not a great look for a security product. Surely they can track downloads from the links/pages rather than modifying the executable. Especially on your own website.
Supply chain attacks are thing and there have been cases of malicious web ads serving compromised executables. Being able to check the integrity of the download is important.
