Re: apt config options to specify the CA of the https repository?

On Sun, Sep 21, 2025 at 07:09:54PM +0200, Vincent Lefevre wrote:

With HTTP, connections can be redirected to a repository with
obsolete, vulnerable packages.

No they can't, there's a signed timestamp in the metadata and apt willwarn if the repository isn't up to date.

Reply to:

Follow-Ups:
- Re: apt config options to specify the CA of the https repository?
  - From: Vincent Lefevre <vincent@vinc17.net>

References:
- apt config options to specify the CA of the https repository?
  - From: Harald Dunkel <harald.dunkel@aixigo.com>
- Re: apt config options to specify the CA of the https repository?
  - From: Jeffrey Walton <noloader@gmail.com>
- Re: apt config options to specify the CA of the https repository?
  - From: Vincent Lefevre <vincent@vinc17.net>