On Tue Sep 16, 2003 at 10:05:18PM -0500, Avi Schwartz wrote: > Today, Mandrake has issued a security update to ssh (BTW, if you did > not update it yet, you better do it soon, before the exploit starts > circulating). I updated all the sources but urpmi --update > --auto-select told me that everything is up to date. Tried the > graphical updater, the same story. I ended up downloading the new RPMs > and installing them manually. How am I supposed to trust DrakeUpdate > and urpmi? > > This is something Mandrake can learn from SuSE. Their online update > works perfectly every time.
Did you do "urpmi.update -a" first? -- MandrakeSoft Security; http://www.mandrakesecure.net/ Online Security Resource Book; http://linsec.ca/ "lynx -source http://linsec.ca/vdanen.asc | gpg --import" {FE6F2AFD : 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFD}
pgp00000.pgp
Description: PGP signature