Re: HTTPS enabled Debian Security repository

To: debian-security@lists.debian.org
Subject: Re: HTTPS enabled Debian Security repository
From: Rob van der Putten <rob@sput.nl>
Date: Tue, 31 Oct 2017 00:17:52 +0100
Message-id: <[🔎] ot8buo$it9$1@blaine.gmane.org>
In-reply-to: <[🔎] 1668914.VrNQGuGv0n@xev>
References: <[🔎] e93a57a8-8ab1-88fc-2e5b-fb3cd005038d@gmail.com> <[🔎] 87wp3fptre.fsf@deep-thought.43-1.org> <[🔎] bd14ade3-cbc1-ec93-c902-10bca5889270@at.or.at> <[🔎] 1668914.VrNQGuGv0n@xev>

Hi there


On 30/10/17 12:24, Russell Coker wrote:

<cut>

I agree.  There's little downside nowadays.  Squid doesn't work particularly
well caching APT repositories nowadays (strange timeouts and hangs during
downloads) so the caching benefit of non-SSL has mostly gone away.


I have no problems with Squid caching apt repositories.

Squid can be made to act as a man in the middle, caching HTTPS, but thisincompatible with DANE.



Regards,
Rob

Reply to:

References:
- HTTPS enabled Debian Security repository
  - From: Marek Sebera <marek.sebera@gmail.com>
- Re: HTTPS enabled Debian Security repository
  - From: Ansgar Burchardt <ansgar@debian.org>
- Re: HTTPS enabled Debian Security repository
  - From: Hans-Christoph Steiner <hans@at.or.at>
- Re: HTTPS enabled Debian Security repository
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: Re: HTTPS enabled Debian Security repository
Next by Date: Unsuscribe
Previous by thread: Re: HTTPS enabled Debian Security repository
Next by thread: Re: HTTPS enabled Debian Security repository
Index(es):
- Date
- Thread