On Thu, Mar 26, 2009 at 10:42:34PM +0000, Colin Watson wrote:
> HTTPS may require more configuration than HTTP. Do you need
> authentication on the HTTPS downloads (e.g. basic auth, client
> certificates)? Do you need to check the server certificate, or is wget
> --no-check-certificate sufficient?
The authentication override for the signature can be used for that also.
But the default needs to be enforcing certificate checks.
Bastian
--
Live long and prosper.
-- Spock, "Amok Time", stardate 3372.7
--
To UNSUBSCRIBE, email to debian-boot-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
