Important infrastructure announcement
Richard Hughes
hughsient at gmail.com
Fri Aug 15 07:54:53 UTC 2008
On Fri, 2008-08-15 at 08:03 +0200, Leszek Matok wrote:
> Actually, I think thousands of users are downloading at least the
> metadata because there was no clear way of disabling PackageKit on
> update. And the metadata, in theory, can exploit a bug in yum, all out
> of sight of users.
Nice speculation, but I would rather wait for hard facts.
> That's what you get when you force users to download things in the
> background for them. Told ya!
Apple and Microsoft both do the same. Unless we download and install
security updates automatically then we are not a serious contender for
the home market.
PackageKit will only allow automatic updates of signed packages. If
we're pumping out invalid signed updates then, well, meh.
Richard.
More information about the fedora-devel-list
mailing list