View Full Version : [ubuntu] how safe are updates on public networks ?

July 17th, 2011, 09:30 AM

I was wondering how safe is it to run Ubuntu updates when I'm connecting via a public network (wireless or wired) from a hotel (or other public settings). I'm not familiar with the internals but is there an additional validation mechanism for the package servers other than the URL ?

July 17th, 2011, 11:49 AM
Each package is checked via hash to ensure they weren't corrupted during download.

It's fine to do updates like that.

I wouldn't surf on a public network without using an SSH tunnel, but that's just me. :)

Lars Noodén
July 17th, 2011, 12:03 PM
Each package is checked with a hash.

The actual list of hashes is signed using PGP. So you can be certain that the packages you are getting are the right ones and not fakes, regardless of which network(s) you are using.

Lars Noodén
July 17th, 2011, 02:33 PM
Here is a short description of how APT works:


July 17th, 2011, 04:28 PM
Thank you all for your replies and for clearing up this issue!