RPM integrity and scripts

Yum repository comes with gpg  and md5 support to verify the validity of the package

You can list installed gpg keys in your system via

It will show the unique id for the installed keys in your  system

gpg-pubkey-e8562897-459f07a4
gpg-pubkey-217521f6-45e8a532

To list all information related to a key
rpm -qi pgp-key-unique-id

 

It will show version , vendor  and many more useful for debugging
To verify package against the  installed keys

U can use parameter  k with rpm

Continue reading RPM integrity and scripts

RedHat Packaging Security with yum

RedHat comes with a mitigated packages called RHSA (redhat security advisory)

This RHSA comes with a unique id  like CVE Contain the date of fix and this type packages  come for the applications that shipped from redhat

Example RHSA-2015:0291
For listing available updates for appliaction

For quick installation to security batches

Continue reading RedHat Packaging Security with yum