To run the vote counting scripts, you need to download this archive: 2003-verif.tar.gz.
Please note that you need make, wget, perl and python to run the verification.
The authentication tokens sent in the ballots were calculated with an old version of the MD5 perl module. It seems there is a bug in this version which make it impossible to get the same authentication tokens without this buggy module.
Note that the authentication tokens did work as expected: they are used to identify the member so we're sure it's him/her who did vote. The only problem arises when counting the votes: to verify the identity of a voter, you need the buggy module.
We needed to work around this bug so everyone could verify the results. This is why the verification software contains bad-token.txt: this file contains all the miscalculated tokens and every information needed to associate them with tokens that everyone can verify.
We advise every member to download the verification software and to verify that his/her counted vote is indeed the vote he/she sent
Here are the steps to obtain the results:
$ tar zxvf 2003-verif.tar.gz
$ cd 2003-verif
$ make
The results should be in results.txt. A list of errors will be generated at the top of the output. The final tallies will be at the bottom.
With this verification software, you should get the same results that the one posted by the GNOME Foundation Membership and Elections Committee. You may want to verify the validity of this software, so here are some hints to help you: