[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [RFC] apt-zeroconf 0.1

* Franz Pletz (fpletz@franz-pletz.org) [061119 21:06]:
> On Sun, Nov 19, 2006 at 07:07:03PM +0100, Reinhard Tartler wrote:
> > Why don't you install a line like
> > 
> > >    e.g. deb http://127.0.0.1:1618/debian main contrib non-free
> > 
> > in /etc/apt/sources.list.d, and be done with it? That's what I'd call
> > zero config.
> > 
> > You would have to convince apt to prefer apt-zeroconfig sources over
> > 'regular' HTTP sources, so that it only uses the slow line when the
> > package couldn't be found in the neighbourhood. I believe this could be
> > tweaked be tuning /etc/apt/preferences. If not, you would have to hack
> > up apt a bit.
> 
> We also pondered with that idea, but with this configuration modifying
> apt is definitely required. Apt associates a server to every package
> and version where to get the debs from. We are not building package
> lists from all hosts in the network because this would compromise the
> security of the whole network.

Two questions:

1. Why don't you add the appropriate proxy-line to to apt via apt.conf.d
(e.g. as conffile, so you don't have to care about that later on)?
2. What security threats do you see?



Cheers,
Andi
-- 
  http://home.arcor.de/andreas-barth/
Reply to: