Rahul Sundaram wrote: > Björn Persson wrote: > > Preupgrade is a good idea. Too bad its authors give security such a low > > priority. Personally I won't use Preupgrade until it verifies > > cryptographic signatures on everything it downloads. > > It uses yum which should handle that. You should file a RFE if you are > talking about something different. Implementing these would be a start: https://fedorahosted.org/preupgrade/ticket/7 https://fedorahosted.org/preupgrade/ticket/8 When I see those tickets closed I'll review Preupgade again to see if there's more to do to make it secure. Björn Persson
Description: This is a digitally signed message part.