Re: HTTPS needs to be implemented for updating

To: debian-security@lists.debian.org
Subject: Re: HTTPS needs to be implemented for updating
From: Peter Lawler <relwalretep@gmail.com>
Date: Mon, 19 Dec 2016 08:03:31 +1100
Message-id: <[🔎] 196a37c1-7a1e-c354-af15-e242202e04a1@bleeter.id.au>
In-reply-to: <[🔎] 20161218110340.GA1611@elch.exwg.net>
References: <[🔎] 70591121.1271659.1482005903177.JavaMail.zimbra@unseen.is> <[🔎] 20161218110340.GA1611@elch.exwg.net>



On 18/12/16 22:03, Christoph Moench-Tegeder wrote:

second point requires a lot of work
to resolve.

Regards,
Christoph


Monday morning yet-to-be-caffienated thoughts...

I'm going to ignore the 'inconvenience' because I think in this casethat's a specious argument.

I acknowledge there's a bucketload of work to implement this. Just getsme to thinking, staging a switch over may be better. eg, a new aptconfig for https as either 'required' 'desired' and 'off'. This reducesthe initial workload. Start with the default 'off', then at some futurerelease move to 'desired' then 'required'.

Further, I suggest perhaps an automated survey of the major mirrors tofind which ones already support https may be in order. Perhaps theresultant data could be used by the apt-transport-https package for now,as well as deciding when the above mentioned switch over might occur.


As I say, decaffienated Monday morning thoughts.

Reply to:

Follow-Ups:
- Re: HTTPS needs to be implemented for updating
  - From: Hans-Christoph Steiner <hans@at.or.at>

References:
- HTTPS needs to be implemented for updating
  - From: gwmfms06@unseen.is
- Re: HTTPS needs to be implemented for updating
  - From: Christoph Moench-Tegeder <cmt@burggraben.net>

Prev by Date: Re: HTTPS needs to be implemented for updating
Next by Date: Re: HTTPS needs to be implemented for updating
Previous by thread: Re: HTTPS needs to be implemented for updating
Next by thread: Re: HTTPS needs to be implemented for updating
Index(es):
- Date
- Thread