Bug#893980: www.debian.org: Many mirrors have no or untrusted HTTPS certificates
On Mon, Mar 26, 2018 at 10:11 PM, Rhonda D'Vine wrote:
> Right, but DNS for the primary ones, and pointing them towards a server
> that isn't under their control would mean that they'd have to carry a
> *.debian.org wildcard certificate. Which won't happen for non-DSA
> operated infrastructure.
Martin was talking about tracking https availability for the secondary
mirrors, which don't have an associated ftp.*.debian.org DNS record.