Re: Attacks on package managers
Posted Apr 14, 2009 19:10 UTC (Tue) by nevyn
In reply to: Attacks on package managers
Parent article: Attacks on package managers
Duh, rawhide isn't signed. Fedora only signs the releases (what normal people use). However in current rawhide they also have metalink to provide security (sha256 hashes of everything) of the repodata.
to post comments)