Bug #21069: yum repo foreman-plugins installed with no security - Packaging - Foreman

Actions

Copy link

Bug #21069

closed

yum repo foreman-plugins installed with no security

Added by Radosław Piliszek about 7 years ago. Updated about 6 years ago.

Status:

Duplicate

Priority:

Normal

Assignee:

Category:

RPMs

Target version:

Difficulty:

trivial

Triaged:

Bugzilla link:

Pull request:

Fixed in Releases:

Found in Releases:

Foreman - 1.15.2

Red Hat JIRA:

Description

foreman-release installs foreman-plugins yum repo with gpgcheck=0 and baseurl with plain HTTP.

If gpg-signing packages is not feasible, then at least using HTTPS instead of plain HTTP would improve system's security with regard to installing/updating those packages.

Related issues 1 (1 open — 0 closed)

History
Property changes

Actions

Copy link

Updated by Ewoud Kohl van Wijngaarden about 6 years ago

Is duplicate of Feature #4788: Plugin rpms not signed added

Actions

Copy link

Updated by Ewoud Kohl van Wijngaarden about 6 years ago

Status changed from New to Duplicate

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Foreman » Packaging

Custom queries

Bug #21069

yum repo foreman-plugins installed with no security

Updated by Ewoud Kohl van Wijngaarden about 6 years ago

Updated by Ewoud Kohl van Wijngaarden about 6 years ago