IBM Support

What precautions does TEM take to ensure that downloads are not spoofed?

Technote (troubleshooting)


Problem(Abstract)

Every time a file is downloaded in a Fixlet message action, the file is checked with a secure hash algorithm checksum (SHA1) to verify that the file is not changed, spoofed, or different in any way.

Resolving the problem

Every time a file is downloaded in a Fixlet message action, the file is checked with a secure hash algorithm checksum (SHA1) to verify that the file is not changed, spoofed, or different in any way. If either the SHA1 checksum of the file or the size of the file is different, then the action is aborted. The SHA1 checksum is verified after download by the TEM Server, after download by each TEM Relay, after download by the TEM Client, and immediately before execution by the TEM Client.

More information about the SHA1 checksum can be found at http://www.w3.org/PICS/DSig/SHA1_1_0.html>http://www.w3.org/PICS/DSig/SHA1_1_0.html

Historical Number

55

Document information

More support for: IBM BigFix family

Software version: Version Independent

Operating system(s): Platform Independent

Software edition: Edition Independent

Reference #: 1505771

Modified date: 25 September 2014


Translate this page: