Christopher Baines <[email protected]> writes: > This sounds like guix gc --verify=contents. Debian has a similar feature > I think, with dpkg --verify.
From the manual:
--8<---------------cut here---------------start------------->8---
When passing ‘--verify=contents’, the daemon computes the content
hash of each store item and compares it against its hash in the
database. Hash mismatches are reported as data corruptions.
Because it traverses _all the files in the store_, this command can
take a long time, especially on systems with a slow disk drive.
--8<---------------cut here---------------end--------------->8---
Is this still relevant remotely? If an untrusted third-party has root
access to the system, they can probably tamper with both the database
and the store, right?
--
Pierre Neidhardt
https://ambrevar.xyz/
signature.asc
Description: PGP signature
