[prev in list] [next in list] [prev in thread] [next in thread] 

List:       fedora-list
Subject:    Re: questions about installing fedora via http
From:       Tim <ignored_mailbox () yahoo ! com ! au>
Date:       2007-04-30 7:18:34
Message-ID: 1177916795.3059.6.camel () serge ! lan ! cameratim ! com
[Download RAW message or body]

On Sun, 2007-04-29 at 12:01 +0300, Angelin Lalev wrote:
> I have some questions about installing fedora via http. 
> 
> 1. After the installation do I still need to use 'yum' to upgrade
> packages as I will need if I install it from CDROM?

I can't remember the answer to that one.  I don't think so, but I'm not
sure.  It was quite some time ago I I did that.

Have a look at the install script, and see if it specifically only uses
the core and extras repos, ignoring the updates ones.

> 2. How secure is installing via http and updating with yum against
> man-in-the-middle attacks? 

All the packages should be signed, with keys you can get from an
official source.  It ought to be safe from that sort of thing (bogus
package replacement), but I can imagine a problem where unsigned
packages get inserted (they wouldn't get checked).

-- 
(This box runs FC6, my others run FC4 & FC5, in case that's
 important to the thread.)

Don't send private replies to my address, the mailbox is ignored.
I read messages from the public lists.


-- 
fedora-list mailing list
fedora-list@redhat.com
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
[prev in list] [next in list] [prev in thread] [next in thread]