Re: people.debian.org will move from ravel to paradis and become HTTPS only

To: debian-devel@lists.debian.org
Subject: Re: people.debian.org will move from ravel to paradis and become HTTPS only
From: Matthias Urlichs <matthias@urlichs.de>
Date: Sun, 20 Jul 2014 10:38:23 +0200
Message-id: <[🔎] 20140720083823.GD15420@smurf.noris.de>
In-reply-to: <[🔎] 1405841035.16130.143560421.61491AAC@webmail.messagingengine.com>
References: <20140713201310.GA27144@ftbfs.de> <[🔎] 66954276.LP9JdarkQP@grep.be> <[🔎] 877g39f4rs.fsf@xoog.err.no> <[🔎] 1537194.az5tucaBzH@grep.be> <[🔎] 1405841035.16130.143560421.61491AAC@webmail.messagingengine.com>

Hi,

Ondřej Surý:
> Pervasive monitoring.

In and of itself, if you only access publicly-availble files, that's not a
threat.

> Really we should introduce encryption
> *everywhere*.
> 
This change does not introduce encryption.
It disables the option not to use encryption.

I can accept that e.g. if you're using basic-auth or similar cleartext
password schemes on the link. Otherwise, not so much.

In other words: please add HTTPS capabilities to d-i before you do that.

-- 
-- Matthias Urlichs

Reply to:

Follow-Ups:
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: "Iain R. Learmonth" <irl@fsfe.org>

References:
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: Wouter Verhelst <w@uter.be>
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: Wouter Verhelst <w@uter.be>
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: Ondřej Surý <ondrej@sury.org>

Prev by Date: Bug#755386: ITP: fonts-adobe-sourcehansans-kr -- “Source Han Sans KR” A sans-serif Pan-CJK font family (KR subset) that is offered in seven weights
Next by Date: Re: people.debian.org will move from ravel to paradis and become HTTPS only
Previous by thread: Re: people.debian.org will move from ravel to paradis and become HTTPS only
Next by thread: Re: people.debian.org will move from ravel to paradis and become HTTPS only
Index(es):
- Date
- Thread