Mailinglist Archive: opensuse (3752 mails)
| < Previous | Next > |
[opensuse] How do I keep openSUSE secure?
- From: Aniruddha <mailing_list@xxxxxxxxx>
- Date: Mon, 08 Oct 2007 13:21:47 +0200
- Message-id: <1191842507.22346.21.camel@xxxxxxxxxxxx>
Coming from Gentoo I wonder how do I keep openSUSE secure (e.g. for
rootkits)? In Gentoo there is one repository with 11.000+ packages which
are all checked for vulnerabilities and verified with shasum.
In contrast openSUSE has many different repositories (Packman, Guru
etc). I assume these are trusted resources. How can I tell if these
rpm's are tampered with?
How do I safely use the gnupg key system for repositories? Is accepting
these keys when adding repositories with yast the preferred way? And if
so how can I tell these are the correct keys?
What about rootkits? How do I protect my system for rootkits when
downloading rpm's from sites such as rpmbone?
And my last question; where do I find security information for openSUSE?
Is there a news site or mailinglist with announcement about security
threats and vulnerabilities?
I ask these questions because I am planning to sell openSUSE 10.3 on
retail pc's through my company. I want the make sure I get all the pro's
and cons of openSUSE security wise before doing so.
Thanks in advance!
Regards,
Aniruddha
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
rootkits)? In Gentoo there is one repository with 11.000+ packages which
are all checked for vulnerabilities and verified with shasum.
In contrast openSUSE has many different repositories (Packman, Guru
etc). I assume these are trusted resources. How can I tell if these
rpm's are tampered with?
How do I safely use the gnupg key system for repositories? Is accepting
these keys when adding repositories with yast the preferred way? And if
so how can I tell these are the correct keys?
What about rootkits? How do I protect my system for rootkits when
downloading rpm's from sites such as rpmbone?
And my last question; where do I find security information for openSUSE?
Is there a news site or mailinglist with announcement about security
threats and vulnerabilities?
I ask these questions because I am planning to sell openSUSE 10.3 on
retail pc's through my company. I want the make sure I get all the pro's
and cons of openSUSE security wise before doing so.
Thanks in advance!
Regards,
Aniruddha
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |