Re: No port 443 (https) available at "security.debian.org"-repository

To: "Zei Ha gmx.net" <zeiha@gmx.net>, debian-project@lists.debian.org
Subject: Re: No port 443 (https) available at "security.debian.org"-repository
From: Chris Lamb <lamby@debian.org>
Date: Tue, 25 Jul 2017 21:56:41 +0100
Message-id: <[🔎] 1501016201.1252969.1052467376.17722981@webmail.messagingengine.com>
In-reply-to: <[🔎] 0MQNFY-1dApuO025k-00Tk2M@mail.gmx.com>
References: <[🔎] 0MQNFY-1dApuO025k-00Tk2M@mail.gmx.com>

Zeiha,

> your repositories on "debian.org" (especially "http://security.debian.org/";
> !!) are not!

This has been brought up many times on many lists; please
see/search the archives in future.

The files are cryptographically signed which guarantees
they haven't been tampered with in transit (modulo replay
attacks which are handled in a different way).

The only thing adopting might provide would be some quasi-
anonymity with regards to which packages you are downloading
but even that is doubtful since the package sizes themselves
are very revealing.

In short, there's no need for SSL. Please see
<https://wiki.debian.org/SecureApt> for the technical details.


Regards,

-- 
      ,''`.
     : :'  :     Chris Lamb, Debian Project Leader
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

Reply to:

Follow-Ups:
- Re: No port 443 (https) available at "security.debian.org"-repository
  - From: Peter Palfrader <weasel@debian.org>
- Re: No port 443 (https) available at "security.debian.org"-repository
  - From: Adam Borowski <kilobyte@angband.pl>

References:
- No port 443 (https) available at "security.debian.org"-repository
  - From: "Zei Ha gmx.net" <zeiha@gmx.net>

Prev by Date: No port 443 (https) available at "security.debian.org"-repository
Next by Date: Re: No port 443 (https) available at "security.debian.org"-repository
Previous by thread: No port 443 (https) available at "security.debian.org"-repository
Next by thread: Re: No port 443 (https) available at "security.debian.org"-repository
Index(es):
- Date
- Thread