Re: Apt sources.list

To: paulf@quillandmouse.com
Cc: debian-user@lists.debian.org
Subject: Re: Apt sources.list
From: Dan Ritter <dsr@randomstring.org>
Date: Sat, 15 Apr 2023 12:18:57 -0400
Message-id: <[🔎] 20230415161857.tsuodcy3nzdqnjnq@randomstring.org>
In-reply-to: <[🔎] 20230415110052.13e41140@yosemite.mars.lan>
References: <[🔎] 20230415081117.13655c70@yosemite.mars.lan> <[🔎] 15042023132141.bd720baf79f7@desktop.copernicus.org.uk> <[🔎] ZDqd9oXDlldenbOa@wooledge.org> <[🔎] 20230415130127.GC2480@phcomp.co.uk> <[🔎] 20230415110052.13e41140@yosemite.mars.lan>

paulf@quillandmouse.com wrote: 
> 
> Okay. Let's open this can of worms. The ONLY reason https is used on
> most sites is because Google *mandated* it years ago. ("Mandate" means
> we'll downgrade your search ranking if you don't use https.) There is
> otherwise no earthly reason to have an encrypted connection to a web
> server unless there is some exchange of private information between you
> and the server.

... and because Let's Encrypt made it relatively easy,
monetarily free, and automated.

> "insecure". Though, in truth, the integrity of Debian server contents
> wouldn't be changed in the slightest whether the connection was
> encrypted or not.

It's nice not to be telling everyone who can sniff a plaintext
connection which packages you are installing, and prevents those
people from trivially substituting trojan horses.

-dsr-

Reply to:

Follow-Ups:
- Re: Apt sources.list
  - From: <tomas@tuxteam.de>

References:
- Apt sources.list
  - From: <paulf@quillandmouse.com>
- Re: Apt sources.list
  - From: Brian <ad44@cityscape.co.uk>
- Re: Apt sources.list
  - From: Greg Wooledge <greg@wooledge.org>
- Re: Apt sources.list
  - From: Alain D D Williams <addw@phcomp.co.uk>
- Re: Apt sources.list
  - From: <paulf@quillandmouse.com>

Prev by Date: Re: Apt sources.list
Next by Date: Re: Apt sources.list
Previous by thread: Re: Apt sources.list
Next by thread: Re: Apt sources.list
Index(es):
- Date
- Thread