@charcol0x89
malicious person
false hash
you
legit repo
apt -o Acquire::http::AllowRedirect=false update
apt -o Acquire::http::AllowRedirect=false upgrade
https://www.debian.org/security/2019/dsa-4371
https://usn.ubuntu.com/3863-2/
https://justi.cz/security/2019/01/22/apt-rce.html
Prevent unauthorised reading of your data
Confirmation from the sender the content is genuine
install apt-transport-https
By Charelle Collett
Lightning talk for LCA2019
See also: https://redhat.slides.com/charellecollett