Re: shutting down httpredir.debian.org?
(In the interest of full disclosure: I work for Fastly.)
> On 2016-04-14 05:02:18, Peter Palfrader wrote:
> > If we want to maintain some form of geographic closeness for it, then
> > pointing it to deb.debian.org seems like something we could try.
> Note sure what that is. http://deb.debian.org/ seems to say it uses the
> Fastly CDN, at least from here.
That is correct.
> A fundamental issue of all this is who we give our users to. Sending
> Debian users to a commercial CDN is a political decision with huge
> privacy implications for our users. I do not think we should redirect
> httpredir like this without at least first informing our users, in
> advance, so they can make an informed decision on which mirror they
> trust with their metadata.
They're already being redirected to random mirrors by using httpredir,
where we have absolutely no control over their logging policy and
practices. With Fastly, we control the logging policy and can stream
logs if we want to (or we can decide not to, which is the current
setup). Fastly's own policy is documented on
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are