nerdexam
CompTIA

LX0-103 · Question #6

When using rpm --verify to check files created during the installation of RPM packages, which of the following information is taken into consideration? (Choose THREE correct answers.)

The correct answer is A. Timestamps B. MD5 checksums D. File sizes. The rpm --verify command validates installed package files against the RPM database using several metadata attributes, but not all possible file attributes.

Linux Installation and Package Management

Question

When using rpm --verify to check files created during the installation of RPM packages, which of the following information is taken into consideration? (Choose THREE correct answers.)

Options

  • ATimestamps
  • BMD5 checksums
  • CInodes
  • DFile sizes
  • EGnuPG signatures

How the community answered

(20 responses)
  • A
    80% (16)
  • C
    15% (3)
  • E
    5% (1)

Why each option

The rpm --verify command validates installed package files against the RPM database using several metadata attributes, but not all possible file attributes.

ATimestampsCorrect
BMD5 checksumsCorrect
CInodes

Inode numbers are not recorded in the RPM database and are not used by rpm --verify because inodes are filesystem-level identifiers that change between installations.

DFile sizesCorrect
EGnuPG signatures

GnuPG signatures verify the authenticity of the package itself at install time via rpm --checksig, and are not part of the per-file verification performed by rpm --verify.

Concept tested: RPM package file integrity verification attributes

Source: https://linux.die.net/man/8/rpm

Topics

#rpm verify#file integrity#MD5 checksums#timestamps

Community Discussion

No community discussion yet for this question.

Full LX0-103 Practice