https://bugzilla.novell.com/show_bug.cgi?id=760457
https://bugzilla.novell.com/show_bug.cgi?id=760457#c25
Scott Couston changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|Major |Normal
--- Comment #25 from Scott Couston 2012-06-01 00:38:30 UTC ---
The .DRPM file integrity from the update repos cannot be verified against its
MIME. Any user that has file integrity checks turned on will come across this
problem. Yes the problem goes away if file integrity is turned off, however
this is far from ideal. Its bad enough to depend on self signed PGPs however I
understand the implications from the open software ethos.
Data security is a growing monster with cloud based apps and cloud based
storage and data security itself is becoming the new mandate.
The other wider issue is why we continue to use HTTP traffic to move such large
amounts of updates. The Nvida repo is about the only repo that uses FTP and I
think all repos need to follow.
I'll downgrade this problem as there is a work around to turn file integrity
checking off, however I think we to lead in the subject of file integrity
rather than follow.
A huge benefit that Linux has in its almost Virus proof nature is our trump
card together with perfect seamless limited user access with other file
security flags; a huge asset but we need to get the file integrity against its
MIME working perfectly
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.
