How to make sure the sha256 checksum of a record on Linux


An vital part of web protection is its safety. Continuous construction and analysis are being finished to stop malicious use and make stronger web recordsdata and packages.

It is regularly unsafe to obtain recordsdata from the web, which is regularly unhealthy. It may be vital to obtain those recordsdata for some essential paintings. Thousands of such recordsdata also are downloaded by means of thousands and thousands of other folks. Therefore, such recordsdata must be safe particularly smartly.

This article will find out about checksum and check the sha256 checksum of a record on Linux.


  • Terminal (non-sudoers can simply paintings there)
  • Validate the checksum record (it will be important)
  • ISO record (downloaded)

What is SHA256?

According to the U.S. National Security Agency, this set of rules is a part of the SHA2 circle of relatives of algorithms. The acronym SHA stands for ‘Secure Hash Algorithm,’ and 256 is the collection of bits utilized in those algorithms.

What is SHA256 Checksum?

It is a cryptographic signature of any record that it might probably use to spot or discover mistakes offered right through transmission or garage. A checksum measures the scale of a block of virtual knowledge. It uniquely represents a record that could be a string. Linux has a number of mathematical algorithms to generate a checksum for a record.

Typically, on the net, the SHA256 checksum is equipped as a string immediately in the principle record or as a textual content record within the obtain phase. Through the unique checksum record, we will check the checksum with the Checksum Utility software.

How to Generate Sha256 Checksum?

A checksum set of rules generates a checksum. There are more than a few checksum algorithms.

  • Secure Hash Algorithms and variants (SHA-1, SHA-2, and so forth.)
  • MD-5 Algorithm

The safe hash set of rules generates a checksum price by means of breaking the record’s knowledge into smaller chunks, making a hash price for each and every phase, and including them.

SHA256 creates the digest or hash price of the record, and as soon as the record is tampered with or changed, the unique SHA256 digest price is modified.

How to Verify SHA256 Checksum with sha256sum

We can check sha256 checksum in two tactics,

  1. Command-line application sha256sum
  2. GUI manner

Command-Line Method

There are equipment to be had in each and every Linux distribution for various checksum algorithms. We can check and generate the checksum the usage of those equipment. Some command-line checksums are as follows.

Apart from all this, sha384sum, sha224sum, and so forth., also are to be had, which use equivalent command codecs. Here we can check the checksum with the assistance of sha256sum the usage of “OpenSUSE Leap 15.2”.

Command-Line application SHA256sum
We don’t wish to carry out any set up for sha256sum because it is part of GNU Coreutils. Checksum recordsdata are to be had for obtain from maximum distributions with ISO recordsdata.

We will obtain the OpenSUSE Leap 15.2 ISO record first after which obtain its checksum with the assistance of the wget command. It is price noting that at the side of ISO recordsdata, the textual content record ‘SHA256SUMS’ may be supplied and incorporates checksum values.


Once the checksum is downloaded, we will generate the checksum with the assistance of the below-mentioned command.

sha256sum openSUSE-Leap-15.2-DVD-x86_64.iso
0fd2d4e630b6579b933b5cb4930a8100acca6b4e29cd2738c4b7a9b2f76d80e4  openSUSE-Leap-15.2-DVD-x86_64.iso

The command with the ‘-c’ flag is administered to match the checksum with the worth within the SHA256SUMS record. The filename and checksum evaluate the entire recordsdata within the listing with the corresponding filename and calculate each and every record’s checksum.

$ sha256sum -c openSUSE-Leap-15.2-DVD-x86_64.iso.sha256
openSUSE-Leap-15.2-DVD-x86_64.iso: OK
sha256sum: WARNING: 14 strains are improperly formatted

Based at the ISO record’s checksum, we will see it fits the unique record. We won OK within the output, which means that that the record downloaded isn’t corrupted and tampered with. As a consequence, we will see that no recordsdata had been tampered with or changed right through the obtain.

If ‘Fail’ is written within the output as a substitute of ‘OK,’ it displays that our record is corrupted and tampered with whilst downloading it. We must obtain the record again; differently, we can’t obtain the respective distribution.

GUI Method

With the assistance of GtkHash, we will use a graphical manner to make sure the checksum. It can check checksums by means of the usage of GtkHash, which helps MD5, SHA, and different checksum algorithms.

Installing GtkHash on Ubuntu
We can simply set up GtkHash in our Ubuntu device by means of merely working the command written beneath:

That’s all we wish to do. Select the checksum set of rules of our selection.

  • In the menu, make a choice Edit > Preferences.
  • Choose those we need to use.
  • Click the Close button.

SHA256, SHA-1, and MD5 are decided on by means of default.

Using GtkHash
The software is fairly simple to make use of.

  • The very first thing we wish to do is make a choice the record to be reviewed.
  • Afterward, input the checksum price discovered at the web page within the test field.
  • Press the Hash button.
  • It generates the checksum price with our selected set of rules.
  • If the test field fits any of them, it displays a small tick mark subsequent to it.


In this text, we now have observed how checksum correctly detects corrupt recordsdata. It is so correct that if we change or delete a personality from any textual content record throughout the ISO symbol, the checksum set of rules generates a completely other price for that modified symbol. We hope that you’ve understood the whole lot smartly from this text.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More