[savannah-help-public] [sr #109567] Download area link for some packages uses insecure http protocol

Ineiev Sat, 06 Oct 2018 11:25:35 -0700

Follow-up Comment #1, sr #109567 (project administration):

HTTPS is not really much more secure against MITM attacks: everyone is free to
setup a mirror, and we add them to our list on their request.


I think the only real protection is signatures.

    _______________________________________________________

Reply to this item at:

  <https://savannah.gnu.org/support/?109567>

_______________________________________________
  Message sent via Savannah
  https://savannah.gnu.org/

[savannah-help-public] [sr #109567] Download area link for some packages uses insecure http protocol

Reply via email to