Fedora F44 Change Proposal: Enforcing signature checking by default (discussion.fedoraproject.org)

submitted 5 months ago by cm0002@lemmings.world to c/linux@programming.dev

3 comments fedilink hide all child comments

top 3 comments

sorted by: hot top controversial new old

[-] eleijeep@piefed.social 7 points 5 months ago

Fedora doesn't already require valid signatures on RPMs? Isn't that somewhat terrifying?

[-] entwine@programming.dev 6 points 5 months ago

Higher level package managers like yum and dnf/dnf5 have implemented their own enforcing signature modes, enabled by default since the beginning of Fedora. This change brings the RPM side default behavior to this millenium.

So it seems it only applies to manually installing RPMs, but I think most people probably use dnf or yum to install packages

[-] eleijeep@piefed.social 4 points 5 months ago

That's fair, and I suppose it's the same for Debian and .debs vs. apt install

this post was submitted on 24 Oct 2025

35 points (100.0% liked)

Linux

13174 readers

313 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev