Re: Hash algorithms used by APT to verify authenticity of installed files.

To: debian-security@lists.debian.org
Subject: Re: Hash algorithms used by APT to verify authenticity of installed files.
From: Gian Piero Carrubba <gpiero@rm-rf.it>
Date: Sat, 23 Apr 2011 18:21:08 +0200
Message-id: <[🔎] 20110423162108.GA6058@caimano.fdc.rm-rf.it>
In-reply-to: <[🔎] pknyoljrojbvamdyedsp@dgdz>
References: <[🔎] pknyoljrojbvamdyedsp@dgdz>

* [Sat, Apr 23, 2011 at 12:04:33PM +0200] Quequanys:

Does it fallback to weaker algorithm, if the hash
made with stronger one is not avaible? Is there a
way to force APT to use only selected algorithms
so APT only accepts files verified by choosen
algorithms, and  rejects files when required
hashes are unavaible?


Acquire::ForceHash

Could you point me to specific portions of
documentation that covers this issue?

I use to consider /usr/share/doc/apt/examples/configure-index.gz as thebest source of informations regarding apt parameters.


Ciao,
Gian Piero.

Reply to:

References:
- Hash algorithms used by APT to verify authenticity of installed files.
  - From: Quequanys <Quequanys@interia.pl>

Prev by Date: Hash algorithms used by APT to verify authenticity of installed files.
Next by Date: Wrong checksum on security.debian.org Squeeze source?
Previous by thread: Hash algorithms used by APT to verify authenticity of installed files.
Next by thread: Re: Hash algorithms used by APT to verify authenticity of installed files.
Index(es):
- Date
- Thread