Article title: FedoraUpdates service recovery. Linux is a technology channel of the IT lab in China. Includes basic categories such as desktop applications, Linux system management, kernel research, embedded systems, and open source.
On February 16, August 28, the Ora update server was intruded without authorization. the management personnel promptly discovered the intrusion and stopped the affected update service. Therefore, the Fedora software warehouse was not updated in the last half month. The re-signing process for tens of thousands of software packages has finally ended today. Currently, the Fedora software update service has been restored. we strongly recommend that the Fedora users execute updates immediately!
Although the specific damage report caused by this intrusion has not been released, the Fedora community has changed the public key for signature during the security period, so the update process is slightly different:
First, enter su-c 'yum Update' in the terminal or use PackageKit-gnome. After the software repository list is downloaded, a package named fedora-release needs to be updated. confirm and install the update.
Run su-c 'yum update' again, and an additional software repository address updates-newkey is found. Depending on the number of installed software packages in the system, a large number of software packages need to be updated. please confirm this update.
After the updated software package is downloaded, a new GPG Key needs to be imported. after you confirm the installation, you can install the updated version.
Note that this process is only valid for the Fedora 8 and Fedora 9 versions, and will not be re-signed for the end of the lifecycle of Fedora 7 and earlier versions. Soon an update package will delete the unused GPG Key and software warehouse information in the system.
For more information, see here.