Hi. I am trying to use Guix at my workplace, where we have mandatory proxy. In my foreign distribution (Debian 9), I have configured Gnome for automatic proxy configuration (PAC file) and, for applications that do not integrate with Gnome’s proxy configuration (such as Emacs), I have set up ntlmaps (localhost:5865). I have tried to make Guix use ntlmaps, but guix pull fails with hash mismatches. For example: --8<---------------cut here---------------start------------->8--- Starting download of /gnu/store/zdahqsfvra1r2ic61x1blh3i3p7xsax6-libpng-1.6.29.tar.xz From http://downloads.sourceforge.net/project/libpng/libpng16/1.6.29/libpng-1.6.29.tar.xz... following redirection to `https://sourceforge.net/projects/libpng/files/'... warning: 'https_proxy' is ignored ....29.tar.xz 226KiB 243KiB/s 00:01 [##################] 100.0% sha256 hash mismatch for output path `/gnu/store/zdahqsfvra1r2ic61x1blh3i3p7xsax6-libpng-1.6.29.tar.xz' expected: 0fgjqp7x6jynacmqh6dj72cn6nnf6yxjfqqqfsxrx0pyx22bcia2 actual: 1kwj40d23c25r9q67vk9giqrq7vp4zsrxvrzxm45zpy01nbhnxpa --8<---------------cut here---------------end--------------->8---
Now I want to make Guix talk to the corporate proxy server directly (not mediated by ntlmaps) but then it needs to authenticate. I could temporarily put my login and password in the proxy URL in /etc/systemd/system/guix-daemon.service.d/override.conf, and erase it after using Guix. I am afraid, though, that these environment variables could be logged. So, is it secure to temporarily put proxy login and password in override.conf, or could they be inadvertently logged? Regards - I am Brazilian. I hope my English is correct and I welcome feedback - Please adopt free formats like PDF, ODF, Org, LaTeX, Opus, WebM and 7z - Free (as in free speech) software for Android: https://f-droid.org/
