Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)

can probably end the thread here because numerous respected @debian contributors have confirmed the issues with confidentiality and seem to making efforts in that direction (hopefully for the next release). -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: When should we https our mirrors?

hat your email is being routed insecurely via welho.com and lacks TLS in transit, so I also probably shouldn't consider your TLS knowledge very highly... -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)

et surveillance. Again, exactly right and well stated. We can never stop targeted attacks, but we can make passive data collection more expensive and increase the chances that a targeted attack is detected. -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: client-side signature checking of Debian archives

that can be removed for trusted Debian mirrors. The rate limits are squarely targeted at preventing malicious site operators that may utilize fast-flux methods to conceal their operations, AFAIK. -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: client-side signature checking of Debian archives

on state attackers. If you want to decrease the traffic analysis issues, you can also support HTTP/2 (or QUIC udp/443 0-rtt in the future), which will bundle resource requests intelligently within the same connection and make traffic analysis a bit more complex / costly. -- Regards, Kri

Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)

sts). Sorry for the long post. I'm not as smart as you guys so it probably takes me 2x longer to explain my thoughts here... -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: client-side signature checking of Debian archives

tlined previously. -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen

Re: client-side signature checking of Debian archives (Re: When should we https our mirrors?)

ed bugs...unless you truly believe that programs interpreting untrusted data over HTTP is 100% securely constructed (quite unlikely). -- Regards, Kristian Erik Hermansen https://www.linkedin.com/in/kristianhermansen https://profiles.google.com/kristianerikhermansen

Re: When should we https our mirrors?

n.org/debian-devel/2016/10/msg00281.html > > Maybe you might cime in there in the discussion with as well your > arguments. > > Regards, > Salvatore I should probably also mention after reading this thread, that for good measure, adding HTTP/2 could dramatically lo