pkg and https-based repo with self-signed cert
Michael Gmelin
freebsd at grem.de
Fri Feb 6 21:38:13 UTC 2015
> On 06 Feb 2015, at 20:03, Marko Cupać <marko.cupac at mimar.rs> wrote:
>
> On Fri, 6 Feb 2015 18:19:16 +0100
> Kurt Jaeger <lists at opsec.eu> wrote:
>
>> It's more along the lines of 'encrypt all the things'...
>>
>> I'm playing with changing all http stuff to https in general and
>> one of them is my repo...
>
> Indeed, it could happen that - in a few years or a few decades - someone
> finds log with "metadata" showing me installing encrypted signed
> packages from my own pkg repo. Who can be sure that punishment for such
> actions won't be imprisonment or death at that time? Better be safe
> than sorry...
>
> :tongue in a cheek (or not?):
For me it's about bidirectional trust as I'm also building "private" packages. Plus, I don't want any unencrypted traffic on our network.
> --
> Marko Cupać
> https://www.mimar.rs
> _______________________________________________
> freebsd-ports at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-ports
> To unsubscribe, send any mail to "freebsd-ports-unsubscribe at freebsd.org"
More information about the freebsd-ports
mailing list