Re: Pre-approval for apt 0.7.21: 'Valid-Until' feature and proxy changes

[Otavio Salvador <otavio@debian.org>]

"Eugene V. Lyubimkin" <jackyf.devel@gmail.com> writes:

> Otavio Salvador wrote:
>> "Eugene V. Lyubimkin" <jackyf.devel@gmail.com> writes:
>> 
>>> Thijs Kinkhorst wrote:
>>>> I've removed some CC's.
>>>>
>>>> On Mon, January 19, 2009 12:47, Eugene V. Lyubimkin wrote:
>>>>> 1) insert apt-transport-https and all its deps into base system (libcurl,
>>>>>  kerberos etc.)
>>>> I'm not sure if we need kerberos for this to work. Just like apt uses a
>>>> small version of gnupg to verify signatures, we can use a small version of
>>>> the https transport that satisfies our needs?
>>> apt-transport-https really depends only on curl, but curl itself has
>>> significant amount of dependencies, so maybe, it depends how the curl binary
>>> package could  be split.
>> 
>> Or we might consider an alternative way to provide a https method. Did
>> someone taken a look how difficult would be to write one?
> Oh, no, we don't need another reinvented wheel for https... (btw, who wants
> to re-implement openssl or gnutls? :)) We already have it
> for http and ftp (which are candidates to be replaced by libcurl (at least
> at my view)).

I agree that reinvent the wheel is not what we want however a bloded
minimal system is bad for embedded and others minimal systems.

I believe that we need to provide a simplified libcurl or something
like, if possible.

-- 
        O T A V I O    S A L V A D O R
---------------------------------------------
 E-mail: otavio@debian.org      UIN: 5906116
 GNU/Linux User: 239058     GPG ID: 49A5F855
 Home Page: http://otavio.ossystems.com.br
---------------------------------------------
"Microsoft sells you Windows ... Linux gives
 you the whole house."