Bug#212732: support redirects and interactive authentication (Progeny)
On Fri, Mar 19, 2004 at 05:57:32PM +0000, Martin Michlmayr wrote:
> * Matt Zimmerman <mdz@debian.org> [2004-03-19 09:26]:
> > It wasn't intended as a suggestion; the key point was:
> >
> > jgg:
> > > Deliberate, redirects are not guarenteed to give the same file that was
> > > requests (see for instance mod speeling)
> >
> > i.e., it is intentional that this is not currently implemented.
>
> Weren't there also security concerns? (Must have been a different
> bug).
I can't think of any; for the most part, anyone who is in a position to
respond with a redirect could also respond with a modified file, etc.
In apt 0.6, signatures and md5sums are checked all the way down anyway, of
course.
--
- mdz
Reply to: