Re: shutting down httpredir.debian.org?

To: debian-project@lists.debian.org
Subject: Re: shutting down httpredir.debian.org?
From: Tollef Fog Heen <tfheen@err.no>
Date: Fri, 15 Apr 2016 06:57:15 +0200
Message-id: <[🔎] 874mb3fp04.fsf@xoog.err.no>
Mail-followup-to: debian-project@lists.debian.org
In-reply-to: <[🔎] 87y48gp7hl.fsf@angela.anarcat.ath.cx> (anarcat@orangeseeds.org's message of "Thu, 14 Apr 2016 10:53:10 -0400")
References: <[🔎] 20160412070409.GB26457@sarek.noreply.org> <[🔎] 20160412073322.GB30522@home.ouaza.com> <[🔎] 20160412075349.GD26457@sarek.noreply.org> <[🔎] f6541c66-a232-f25f-2996-866a53e31ad7@netcologne.de> <[🔎] 20160413082353.GA31833@home.ouaza.com> <[🔎] afae3603-de91-9835-86d6-d7fb9f638b33@netcologne.de> <[🔎] 20160414090218.GA790@sarek.noreply.org> <[🔎] 87y48gp7hl.fsf@angela.anarcat.ath.cx>

]] anarcat 

(In the interest of full disclosure: I work for Fastly.)

> On 2016-04-14 05:02:18, Peter Palfrader wrote:
> > If we want to maintain some form of geographic closeness for it, then
> > pointing it to deb.debian.org seems like something we could try.
> 
> Note sure what that is. http://deb.debian.org/ seems to say it uses the
> Fastly CDN, at least from here.

That is correct.

> A fundamental issue of all this is who we give our users to. Sending
> Debian users to a commercial CDN is a political decision with huge
> privacy implications for our users. I do not think we should redirect
> httpredir like this without at least first informing our users, in
> advance, so they can make an informed decision on which mirror they
> trust with their metadata.

They're already being redirected to random mirrors by using httpredir,
where we have absolutely no control over their logging policy and
practices.  With Fastly, we control the logging policy and can stream
logs if we want to (or we can decide not to, which is the current
setup).  Fastly's own policy is documented on
https://docs.fastly.com/guides/compliance/security-and-technology-compliance#cache-data-and-end-user-information-management

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Reply to:

References:
- shutting down httpredir.debian.org?
  - From: Peter Palfrader <weasel@debian.org>
- Re: shutting down httpredir.debian.org?
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: shutting down httpredir.debian.org?
  - From: Peter Palfrader <weasel@debian.org>
- Re: shutting down httpredir.debian.org?
  - From: Christian Rohmann <crohmann@netcologne.de>
- Re: shutting down httpredir.debian.org?
  - From: Raphael Hertzog <hertzog@debian.org>
- Re: shutting down httpredir.debian.org?
  - From: Christian Rohmann <crohmann@netcologne.de>
- Re: shutting down httpredir.debian.org?
  - From: Peter Palfrader <weasel@debian.org>
- Re: shutting down httpredir.debian.org?
  - From: anarcat <anarcat@orangeseeds.org>

Prev by Date: Re: shutting down httpredir.debian.org?
Next by Date: Debian Open Use Logo inquiry
Previous by thread: Re: shutting down httpredir.debian.org?
Next by thread: Re: shutting down httpredir.debian.org?
Index(es):
- Date
- Thread