Re: Up2date and SysAdmin auth.
From: Stanley Allely (eod76_at_axint.net)
Date: 08/10/04
- Previous message: Rosanna Sordo: "Re: problems with lock screen"
- In reply to: William Hooper: "Re: Up2date and SysAdmin auth."
- Next in thread: William Hooper: "Re: Up2date and SysAdmin auth."
- Reply: William Hooper: "Re: Up2date and SysAdmin auth."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Tue, 10 Aug 2004 04:58:21 -0600 To: For users of Fedora Core releases <fedora-list@redhat.com>
>
>
>William Hooper wrote:
>The RPMs are signed with the Fedora GPG key. If you choose to configure your system to not check it, then you might have a problem.
>
>
>
>>So the weak points in the update process are:
>>
>>
>>1. repository compromise
>>2. session hijacking
>>3. packet injection/spoofing
>>
>>
>
>All fixed by configuring up2date and/or yum to verify GPG signatures.
>
>
>
Does the default up2date verify the signatures or do I need to do some
tweaking? If so, what do I do?
Thanks Stan
-- fedora-list mailing list fedora-list@redhat.com To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
- Previous message: Rosanna Sordo: "Re: problems with lock screen"
- In reply to: William Hooper: "Re: Up2date and SysAdmin auth."
- Next in thread: William Hooper: "Re: Up2date and SysAdmin auth."
- Reply: William Hooper: "Re: Up2date and SysAdmin auth."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
