You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 Re: Devuan » Question about https://deb.devuan.org/ » Today 15:24:52
This is normal for apt, but I didn't always know that. It's confusing for users who may misjudge the security of the distro.
Here's what I see from Firefox:
Be careful. Something doesn’t look right.
Firefox spotted a potentially serious security issue with deb.devuan.org. Someone pretending to be the site could try to steal things like credit card info, passwords, or emails.
I'm not suggesting a change -- but I am sympathetic to those feeling troubled by this. File under "https is a pain and it's not the only way to secure things".
[edit: To explain the above quote, DNS round robin came up with ftp.fau.de in this case, which correctly doesn't have a cert for deb.devuan.org. sledjhamr has a cert.
But have I misunderstood OP's concern? Was the concern that deb.devuan.org redirected to sledjhamr.org instead of sledjhamr.org/devuan/ ? In that case, is the concern about equal for redirecting to ftp.fau.de instead of ftp.fau.de/devuan/ ?
Some mirrors are foo.blah.tld/ and some are foo.blah.tld/devuan. Apt must be handling that automatically.
]
Pages: 1
Board footer
