Re: [RFC] apt-zeroconf 0.1
* Franz Pletz (fpletz@franz-pletz.org) [061119 21:06]:
> On Sun, Nov 19, 2006 at 07:07:03PM +0100, Reinhard Tartler wrote:
> > Why don't you install a line like
> >
> > > e.g. deb http://127.0.0.1:1618/debian main contrib non-free
> >
> > in /etc/apt/sources.list.d, and be done with it? That's what I'd call
> > zero config.
> >
> > You would have to convince apt to prefer apt-zeroconfig sources over
> > 'regular' HTTP sources, so that it only uses the slow line when the
> > package couldn't be found in the neighbourhood. I believe this could be
> > tweaked be tuning /etc/apt/preferences. If not, you would have to hack
> > up apt a bit.
>
> We also pondered with that idea, but with this configuration modifying
> apt is definitely required. Apt associates a server to every package
> and version where to get the debs from. We are not building package
> lists from all hosts in the network because this would compromise the
> security of the whole network.
Two questions:
1. Why don't you add the appropriate proxy-line to to apt via apt.conf.d
(e.g. as conffile, so you don't have to care about that later on)?
2. What security threats do you see?
Cheers,
Andi
--
http://home.arcor.de/andreas-barth/
Reply to: