View Full Version : Respository check or safe check?
chihwah_li
February 10th, 2015, 12:38 AM
Hello all Linux users,
I am wondering how I can check if a Ubuntu 10.04 (or for any other version) if a respository is safe or not.
For my problem with the taskbar not showing the WIFI icon and my Dropbox icon was played at the far left of the taskbar, I fixed that with:
sudo apt-add-repository ppa:gurqn/systray-trusty
sudo apt-get update
sudo apt-get upgrade
From the forum post: http://ubuntuforums.org/showthread.php?t=2217458
How can I know of the given PPA is safe or not? --> ppa:gurqn
Kindest regards,
Cwli
grahammechanical
February 10th, 2015, 01:03 AM
PPAs are Personal Package Archives. Do we trust the person who wrote the code and packaged the code into an archive? That is the question.
PPA's do not undergo the same process of validation as packages in the main ubuntu repositories. PPA keys are cryptographically signed but are still a low security alternative to the main repository and so the user will be installing software at their own risk.
https://help.ubuntu.com/community/Repositories/Ubuntu
Regards.
v3.xx
February 10th, 2015, 03:50 AM
PPAs can be buggy at times. Its best to have a way out. Like ppa-purge or y-ppa.
http://www.googlubuntu.com/results/?cx=006238239194895611142:u-ocqbntw_o&q=ppa+purge&sa=Search&cof=FORID:9
http://www.googlubuntu.com/results/?cx=006238239194895611142:u-ocqbntw_o&q=y+ppa+manager&sa=Search&cof=FORID:9
sandyd
February 10th, 2015, 05:42 AM
Hello all Linux users,
I am wondering how I can check if a Ubuntu 10.04 (or for any other version) if a respository is safe or not.
For my problem with the taskbar not showing the WIFI icon and my Dropbox icon was played at the far left of the taskbar, I fixed that with:
sudo apt-add-repository ppa:gurqn/systray-trusty
sudo apt-get update
sudo apt-get upgrade
From the forum post: http://ubuntuforums.org/showthread.php?t=2217458
How can I know of the given PPA is safe or not? --> ppa:gurqn
Kindest regards,
Cwli
Side Note: Ubuntu 10.04 Desktop is EOL, and the repositories are no longer maintained: https://wiki.ubuntu.com/Releases
The ppa works by backporting the version of Unity in trusty to 10.04.
deadflowr
February 10th, 2015, 05:49 AM
How can I know of the given PPA is safe or not? --> ppa:gurqn
Most ppa's, if not all listed as ppa's, are a launchpad system naming.
So go to launchpad and search for that particular users ppas.
Doing a quick one for you here's the users launchpad home page
https://launchpad.net/~gurqn
and here's the page for the ppa for the systray-trusty packages
https://launchpad.net/~gurqn/+archive/ubuntu/systray-trusty/+packages
and the ppa's actual home page with the repository signing key
https://launchpad.net/~gurqn/+archive/ubuntu/systray-trusty
(click on the dropdown section of the add this ppa section that says "Technical details about this ppa to see the info about the keys)
From there you can go further down the rabbit hole if you wish and inspect the packages available.
PPA can be setup by absolutely anyone, so you can either
A)Investigate any ppa you want to add to your system.
B)Trust in others who have added them to their systems.
or C) Trust the ppa blindly, and let the chips fall where they may.
Hope that helps
Powered by vBulletin® Version 4.2.2 Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.