tech-userlevel archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: Package automation in /etc/daily

On Sun, Jan 17, 2010 at 04:00:48PM +0000, Julio Merino wrote:
>      check_packages             Checks the digital signature of all files
>                                 installed by packages against the expected
>                                 values stored in the packages database.

Doesn't have practical value to prevent "attacks" -- MD5 is simply too

>      fetch_pkg_vulnerabilities  Refreshes the local database of package vul-
>                                 nerabilities.

Must be done by default, should be done with -u.

>      pkg_dbdir  Location of the packages database.  If unset, defaults to the
>                 value of the PKG_DBDIR environment variable (typically set
>                 from /etc/profile) or to /var/db/pkg.

I don't think support for non-default locations should be included...
E.g. use whatever pkg_admin is configured for.


Home | Main Index | Thread Index | Old Index