Eternal 'good file hashes' list
Nicolas Mailhot
nicolas.mailhot at laposte.net
Tue Oct 20 08:39:10 UTC 2009
Le Mar 20 octobre 2009 10:20, Tomas Mraz a écrit :
> What would this be good for? Actually for some files it would be a known
> bad file hashes because these files (binaries or scripts) would contain
> known vulnerabilities and so knowing that you have a file that was once
> included in Fedora does not guarantee you almost anything.
It would help a lot tripwire-like apps. When the hash db is generated on-site
it typically can not distinguish between changes done by legit updates and
manual changes.
--
Nicolas Mailhot
More information about the fedora-devel-list
mailing list