Rpm & Yum

naziboy · 10-05-2007, 12:10 PM

This is more of a discussion topic then a question.I have been using fedora core 6 for last 3 months.Its great but the only problem point in core 6 & all of linux distributions is software installations.Introduction of yum has provided much of relief from dependency problem but a new software installation on linux is still a cumbersome process than in, say, windows.So i wanted u guys 2 suggest want new technology 2 introduce 2 answer the above problem...

lazlow · 10-05-2007, 12:17 PM

Have you tried smartpm or yumex? They both are extremely easy to use and very robust. I also think you may be confusing cumbersome with secure.

naziboy · 10-05-2007, 12:46 PM

Quote:

Originally Posted by lazlow

Have you tried smartpm or yumex? They both are extremely easy to use and very robust. I also think you may be confusing cumbersome with secure.

Thnks for reply.wat r smartpm & yumex.I guess software installation tools.On which distributions r they available?....Anyways my point was tat the methods of installing software is not standard in all linux distributions..for eg. in red hat softwares r packaged in .rpm format were as they r in diiferent format in other distributions & so we hav 2 use different tools 2 install them...also by cumersome wat i meant was tat for a software 2 be installed in linux either v have 2 have net connectionn or manually create repository in our system & dump all the packages in there(at least in red hat)wereas in windows v just have 2 click...tats it..

lazlow · 10-05-2007, 12:53 PM

Yumex is a graphical front end for yum.

Smartpm is a package manager that you may use the gui with.

Visually they are very similiar. Yumex is available for most rpm based distros. Smartpm is available for most distros. Both are available for fedora and are in the repos.

As I suspected, you are confusing security and cumbersome. The method you have described is there to protect the system.

Good Luck
Lazlow

naziboy · 10-05-2007, 01:05 PM

Thanks for replying...once again...but plzz for 1 last time clear my doubts on how usins rpm & installing in that particular way is going 2 affect security...............

lazlow · 10-05-2007, 01:27 PM

Ok, repos generate a code that the root user has to verify as good (it asks root if it is ok to use this code once per repo). This code is assigned to that repo and no other. All the rpms that are installed from that repo contain that code. This prevents someone from hacking up a Trojan version of a rpm. This security is built into the system. You building a local repo is a way to circumvent that system. It is done in this way to discourage doing this. The vast majority of computers out there have a net connection. It is more secure to limit the number of sources through repos, as a guess 80% of the programs used are available from a repo. In the event that they are not, it is usually a relatively easy matter to compile the app on the system locally. If you locally install a rpm and disable the code this leaves you wide open to Trojan rpms.

As an aside, this forum is for non-native English speakers as well as native speakers. As the forum requires that these speakers use English it also means that the rest of us do too. IE, please stop using leet.