Anatoli <m...@anatoli.ws> wrote: > And thank you for your detailed explanation about the certs for firmware > sub-domain. Just wanted to say that IMO there's actually one thing that > it would solve: the privacy of the requests, i.e. we wouldn't be leaking > info about our devices with proprietary fw to anyone listening on the > wires. But I see it's a considerable effort to set it up. I already know > whom to contact to collaborate with the infrastructure.
oh really, https solves that?? Sorry to burst your bubble, but looking at the number of bytes moved in the sessions is sufficient to determine which firmwares were selected and downloaded.
