LX0-103 · Question #6
When using rpm --verify to check files created during the installation of RPM packages, which of the following information is taken into consideration? (Choose THREE correct answers.)
The correct answer is A. Timestamps B. MD5 checksums D. File sizes. The rpm --verify command validates installed package files against the RPM database using several metadata attributes, but not all possible file attributes.
Question
When using rpm --verify to check files created during the installation of RPM packages, which of the following information is taken into consideration? (Choose THREE correct answers.)
Options
- ATimestamps
- BMD5 checksums
- CInodes
- DFile sizes
- EGnuPG signatures
How the community answered
(20 responses)- A80% (16)
- C15% (3)
- E5% (1)
Why each option
The rpm --verify command validates installed package files against the RPM database using several metadata attributes, but not all possible file attributes.
Inode numbers are not recorded in the RPM database and are not used by rpm --verify because inodes are filesystem-level identifiers that change between installations.
GnuPG signatures verify the authenticity of the package itself at install time via rpm --checksig, and are not part of the per-file verification performed by rpm --verify.
Concept tested: RPM package file integrity verification attributes
Source: https://linux.die.net/man/8/rpm
Topics
Community Discussion
No community discussion yet for this question.