How secure is Preupgrade?
Rahul Sundaram
sundaram at fedoraproject.org
Mon May 19 23:24:08 UTC 2008
Björn Persson wrote:
> Preupgrade is clearly a good idea. There's just one thing with how it's
> implemented that I'm wondering about: What does it do to check the files it
> downloads for malicious tampering?
Preupgrade is essentially a wrapper around yum. Yum has gpg signature
support and it does check the keys used while building the packages when
it is installing them by default just like it does on any regular
installations or upgrades of packages. Anaconda merely is picking up the
updates from your local hard disk after preupgrade in combination with
yum has downloaded them.
Rahul
More information about the fedora-list
mailing list