Eternal 'good file hashes' list

Ralf Ertzinger fedora at camperquake.de
Tue Oct 20 08:45:34 UTC 2009


Hi.

On Tue, 20 Oct 2009 10:20:17 +0200, Tomas Mraz wrote:

> What would this be good for? Actually for some files it would be a
> known bad file hashes because these files (binaries or scripts) would
> contain known vulnerabilities and so knowing that you have a file
> that was once included in Fedora does not guarantee you almost
> anything.

I'm not sure I follow you here. Containing a known vulnerability in a
binary file has nothing to do with the hash.




More information about the fedora-devel-list mailing list