Should I switch the Virt repo back to https for security?
(Sorry for my noob questions, but I know very little about repos.)
Why?
The packages are signed
1 Like
I would do that. The entire qemu/kvm/libvirt stack is in the distro itself, so also virt-manager. Remove it and run:
sudo zypper dup --allow-vendor-change
This will switch the virtualization packages back to the ones in the TW OSS repo
Security is not at stake here re. https/http. You are not adding data on some page, you are just retrieving.
1 Like
Just want to make sure. Here’s a pic of the task to be done to delete the Virt repo. → openSUSE Paste
Look correct?
Sorry for being so careful, but I don’t want to mess up my system.
Yes. After this, you need to do sudo zypper dup --allow-vendor-change to replace the packages from the Virtualization repo with the ones in the Tumbleweed OSS repo. You could also perform a “Distribution Upgrade” with Myrlyn (YaST cannot), and accept the replacement of those packages.
If I successfully run “sudo zypper dup --allow-vendor-change” should I still do the “Distribution Upgrade with Myrlyn”?
Is it helpful to do both? Or is it enough just to run “sudo zypper dup --allow-vendor-change”?
OK, the full results of running “sudo zypper dup --allow-vendor-change” are here —> openSUSE Paste
Looks like it ran OK to my noob eyes.
Uh oh. Now my VirtualBox VM is not working. 
Sigh. Starting troubleshooting…
Could “sudo zypper dup --allow-vendor-change” have caused this?
I did a reboot and now it’s working again.
1 Like