Re: Re: HTTPS for Debian archive mirrors, and CAA

To: debian-mirrors@lists.debian.org
Subject: Re: Re: HTTPS for Debian archive mirrors, and CAA
From: Carlos Carvalho <carlos@fisica.ufpr.br>
Date: Tue, 19 Sep 2017 10:17:03 -0300
Message-id: <[🔎] 20170919131703.2wmiwnxl7cu4qjrb@fisica.ufpr.br>
In-reply-to: <[🔎] AFAD17AF-8735-452B-AF9B-326C8A84DB7A@tuna.tsinghua.edu.cn>
References: <[🔎] AFAD17AF-8735-452B-AF9B-326C8A84DB7A@tuna.tsinghua.edu.cn>

Shanker Wang (miao.wang@tuna.tsinghua.edu.cn) wrote on Mon, Sep 18, 2017 at 05:53:54PM -03:
> For example, on our server, which is serving ftp2.cn.debian.org, requests
> with unknown "Host:" header will be rejected due to security issues, i.e. if
> you point ftp.xx.debian.org to our server without notice in advance, requests
> pointing to that domain name will be silently disconnected.

You should accept requests for ftp2.cn.debian.org and also for your domain. For
example, we accept ftp.br.d.o and debian.c3sl.ufpr.br.

Of course in case of change the mirror team must make sure that the new site
where they wish to point the ftp.cc.d.o will accept these requests in addition
to their own name. That's why we also accept ftp.cl.d.o

Reply to:

References:
- Re: Re: HTTPS for Debian archive mirrors, and CAA
  - From: Shanker Wang <miao.wang@tuna.tsinghua.edu.cn>

Prev by Date: Re: HTTPS for Debian archive mirrors, and CAA
Next by Date: New ftpsync version 20170920
Previous by thread: Re: Re: HTTPS for Debian archive mirrors, and CAA
Next by thread: Re: HTTPS for Debian archive mirrors, and CAA
Index(es):
- Date
- Thread