this post was submitted on 24 Oct 2025

34 points (100.0% liked)

Linux

9949 readers

276 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago

MODERATORS

Ategon@programming.dev

anzo@programming.dev

dwraf_of_ignorance@programming.dev

34

Fedora F44 Change Proposal: Enforcing signature checking by default (discussion.fedoraproject.org)

submitted 6 days ago by cm0002@lemmings.world to c/linux@programming.dev

3 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] eleijeep@piefed.social 7 points 6 days ago (2 children)

Fedora doesn't already require valid signatures on RPMs? Isn't that somewhat terrifying?

[–] entwine@programming.dev 6 points 6 days ago (1 children)

Higher level package managers like yum and dnf/dnf5 have implemented their own enforcing signature modes, enabled by default since the beginning of Fedora. This change brings the RPM side default behavior to this millenium.

So it seems it only applies to manually installing RPMs, but I think most people probably use dnf or yum to install packages

[–] eleijeep@piefed.social 4 points 6 days ago

That's fair, and I suppose it's the same for Debian and .debs vs. apt install