Steven Harms » redhat http://www.sharms.org/blog Life, Linux and Technology Sun, 28 Aug 2011 18:02:56 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Fedora 12 default package install policy http://www.sharms.org/blog/2009/11/fedora-12-default-package-install-policy/ http://www.sharms.org/blog/2009/11/fedora-12-default-package-install-policy/#comments Thu, 19 Nov 2009 15:53:01 +0000 sharms http://www.sharms.org/blog/2009/11/19/fedora-12-default-package-install-policy/
  • Stimulus package
  • What I am working on
  • Fedora Core 6
    • ]]>     Just a quick note, if you don’t like Fedora 12′s policy, you probably don’t understand how systems today currently work.

    This is much more secure, and you are able to disable it. If you are using systems in public, then there is much more you need to disable such as removable media automounting etc, and would not use default settings anyway.

    The current way of throwing blanket root access out for any system change is inherently less secure, their change aims to only allow signed package and that 1 specific action to occur.

    Yes you could make a collision, but if you can’t trust your package sources, you can’t trust your system as a whole, so the entire idea is moot.

    Related posts:

    1. Stimulus package
    2. What I am working on
    3. Fedora Core 6

    ]]>     http://www.sharms.org/blog/2009/11/fedora-12-default-package-install-policy/feed/ 9