Updates make DVD upgrade insecure. (was: AutoQA upgrade path failure makes no sense to me)
Björn Persson
bjorn at xn--rombobjrn-67a.se
Wed Apr 27 22:21:22 UTC 2011
Kevin Kofler wrote:
> I've been saying all the time that the DVD must get
> fixed to support enabling the updates repository also for upgrades, not
> just for new installs. In fact, I'd even go as far as saying it should
> REQUIRE it, not just support it.
That would make bug 998 even more urgent than it already is – especially if
the updates repository were required, as that would change the upgrade from
secure to insecure. Currently it is possible to upgrade by DVD in a secure
way. It requires some manual checking but it can be done if you have the
knowledge. If packages are downloaded during the upgrade, then the upgrade is
insecure unless Anaconda learns to verify the signatures on the packages it
downloads.
Björn Persson
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
Url : http://lists.fedoraproject.org/pipermail/devel/attachments/20110428/49551f57/attachment.bin
More information about the devel
mailing list