Or - How do you get this Hash ?
Calculate it according to transaction signing rules, which are tricky. (But are implemented in the reference client, so you can copy that.)
that would not spot modifications e.g. through removing/altering an unused push from script.
? Any modification that changes the signing hash would invalidate the signature.