> "Chris" == Chris Watt <[EMAIL PROTECTED]> writes:
...
Chris> You can view an RPM file as three pieces: The actual installable
Chris> package, the MD5 checksum of the installable package, and an
Chris> (optional) GPG signature for the installable package.
I think this is still correct:
htt
At 10:05 AM 11/21/01 +0100, Mariusz Pekala wrote:
>> It lets you detect if file has been changed or corrupted by accident or
>> error rather than by someone's malicious action.
>
>No.
>1) Modified file also has its md5 sum.
>2) The md5 of the modified file will be different than the md5 of an
On Tue 20 November 2001 15:15, you (Wojtek Pilorz) wrote:
> On Mon, 19 Nov 2001, David Talkington wrote:
> > This command:
> >
> > $ rpm --checksig --nogpg
> >
> > meets with my skepticism. It checks the md5 sum of an rpm package.
> > - From where does rpm get the sum to which it compares the co
On Mon, 19 Nov 2001, David Talkington wrote:
> This command:
>
> $ rpm --checksig --nogpg
>
> meets with my skepticism. It checks the md5 sum of an rpm package.
> - From where does rpm get the sum to which it compares the computed
> value? If it comes from within the file itself, absent a
riginal Message-
From: David Talkington [mailto:[EMAIL PROTECTED]]
Sent: 20 November 2001 03:40
To: [EMAIL PROTECTED]
Subject: another md5sum question
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This command:
$ rpm --checksig --nogpg
meets with my skepticism. It checks the md5 sum of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This command:
$ rpm --checksig --nogpg
meets with my skepticism. It checks the md5 sum of an rpm package.
- From where does rpm get the sum to which it compares the computed
value? If it comes from within the file itself, absent any
out-of-ba
