Bug#929224: apt-cacher-ng, debootstrap and deb.debian.org combination fails

To: Eduard Bloch <edi@gmx.de>
Cc: 929224@bugs.debian.org
Subject: Bug#929224: apt-cacher-ng, debootstrap and deb.debian.org combination fails
From: Sean Whitton <spwhitton@spwhitton.name>
Date: Wed, 05 Jun 2019 08:09:20 -0700
Message-id: <[🔎] 87blzcax27.fsf@iris.silentflame.com>
Reply-to: Sean Whitton <spwhitton@spwhitton.name>, 929224@bugs.debian.org
In-reply-to: <[🔎] 20190604063048.GA3478@rotes76.wohnheim.uni-kl.de>
References: <87y332jxd4.fsf@iris.silentflame.com> <20190522192416.GA1651@rotes76.wohnheim.uni-kl.de> <875zq2oueg.fsf@iris.silentflame.com> <[🔎] 20190604063048.GA3478@rotes76.wohnheim.uni-kl.de> <87y332jxd4.fsf@iris.silentflame.com>

Hello Eduard,

On Tue 04 Jun 2019 at 08:30AM +02, Eduard Bloch wrote:

> Sure you do, guess what "    URL transformed to HTTPS due to an HSTS policy" is supposed to mean.
>
>
>        --no-hsts
>            Wget supports HSTS (HTTP Strict Transport Security, RFC 6797) by default.  Use --no-hsts to make Wget act as a non-HSTS-compliant UA. As a consequence, Wget would
>            ignore all the "Strict-Transport-Security" headers, and would not enforce any existing HSTS policy.

So are you saying you think the bug is in debootstrap, i.e., debootstrap
should start passing --no-hsts to wget?

-- 
Sean Whitton

Attachment: signature.asc
Description: PGP signature

Reply to:

References:
- Bug#929224: apt-cacher-ng, debootstrap and deb.debian.org combination fails
  - From: Eduard Bloch <edi@gmx.de>

Prev by Date: Re: Bug#926242: jenkins.debian.org: Please test reproducibility status of Debian Installer images
Next by Date: Support for NanoPi NEO Air (was Re: Bug#928861: flash-kernel: Please add an entry for FriendlyArm NanoPi NEO 2)
Previous by thread: Bug#929224: apt-cacher-ng, debootstrap and deb.debian.org combination fails
Next by thread: Bug#928861: flash-kernel: Please add an entry for FriendlyArm NanoPi NEO 2
Index(es):
- Date
- Thread