On Thu, 18 Feb 2016, Luca Filipozzi wrote:
On Wed, Feb 17, 2016 at 06:15:46PM -0800, Martin Michlmayr wrote:* The Wanderer <wanderer@fastmail.fm> [2015-09-04 12:17]:When I connect to http://get.debian.org/ in a Web browser, I am redirected to https://www.debian.org/CD/, which is a HTTPS site. However, the initial connection attempt is made over HTTP, and is potentially subject to external observation. When I connect to https://get.debian.org/, I get a near-instant "connection refused" or "failed to connect" error.Initial testing seems to indicate that the same basic behavior occurs with cdimage.debian.org, which is the old name for the service now provided by get.debian.org.debian-admin: can you help with this?$ host get.debian.org get.debian.org is an alias for ftp.acc.umu.se. Carbon copying Niklas Edmundsson (maswan).
This should be doable as long as https is only used for the initial redirect stuff, not for the actual file transfer.
Our ftp cluster composed of 5+ year old machines barely have the power to do https at 10 gigabit, and we'd like to be able to scale to 100 gigabit when SUNET gets upgraded later this year.
Niklas, I can get provide an X.509 certificate.
OK, we can handle this off-ticket.
/Nikke
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Niklas Edmundsson, Admin @ {acc,hpc2n}.umu.se | nikke@acc.umu.se
---------------------------------------------------------------------------
Has anyone found my marbles?
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=