Mailinglist Archive: opensuse-security (109 mails)

< Previous Next >
Re: [suse-security] Re: SUSE Security Announcement: gpg,liby2util signature checking problems (SUSE-SA:2006:013)
  • From: Roman Drahtmueller <draht@xxxxxxx>
  • Date: Tue, 7 Mar 2006 02:00:30 +0100 (CET)
  • Message-id: <Pine.LNX.4.61.0603070159020.12059@xxxxxxxxxxxx>
> > Why is this a matter of what mirror one choses? I thought it´s only a
> > matter of how YOU or your fou4s checks the signatures?
> >
> > Malte
>
> YOU doesn't check signatures. It is a security issue. Be very careful of the

Why do you think YOU doesn't check signatures? I mean, besides the
bug...?

> repositories you setup in YOU. I recommend only using YOU for SUSE provided
> updates. Use smart, apt/synaptic, etc for other updates such as KDE, GNOME,
> etc because they do some rpm signature checking.
>
> Stan

Roman.
< Previous Next >
Follow Ups