From owner-freebsd-hackers@FreeBSD.ORG Mon Oct 22 02:34:21 2007 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id CD29D16A417 for ; Mon, 22 Oct 2007 02:34:21 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: from wa-out-1112.google.com (wa-out-1112.google.com [209.85.146.183]) by mx1.freebsd.org (Postfix) with ESMTP id AB7A313C4C1 for ; Mon, 22 Oct 2007 02:34:21 +0000 (UTC) (envelope-from adrian.chadd@gmail.com) Received: by wa-out-1112.google.com with SMTP id k17so1185957waf for ; Sun, 21 Oct 2007 19:34:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; bh=3GoEEOL3wdkhxrQBE7a/jkLnIFGKvLLlaGOk3Qojpgc=; b=VkvFlKG6hA5QP1+1odHSfg14UD8JhKUw9CYAI+wrBN2eMWRAcufH5BpWQajgVJBTyNBB7Cs7+UBrSFzn4/p9+avEDFsYA9SMygRC2NImcNCw5x1sYl4YpfYJ3qMgDYqfMsC2XNgPnP6TZslVtxXCLG1dxJe8fhxwgk4Xx/7MxFQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:sender:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references:x-google-sender-auth; b=nennmxGQchibdk1gTnkor6WKWnbPGwt87nGqTnL3klG3W0TZTPgPbciuzWqU+H+VUeGcwu6MSOf0n/8rHottwyvJATMoPVoFhqPaF2fgEHDaHHluEOt1fRDuu8lmv3Kl/VHFXi/RFbqiMf5RxydVp3dg/w4buUZgSZ0otaBHhzY= Received: by 10.114.67.2 with SMTP id p2mr4871023waa.1193018853516; Sun, 21 Oct 2007 19:07:33 -0700 (PDT) Received: by 10.114.67.19 with HTTP; Sun, 21 Oct 2007 19:07:33 -0700 (PDT) Message-ID: Date: Mon, 22 Oct 2007 10:07:33 +0800 From: "Adrian Chadd" Sender: adrian.chadd@gmail.com To: "David E. Thiel" In-Reply-To: <20071021013917.GB86865@redundancy.redundancy.org> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <20071021013917.GB86865@redundancy.redundancy.org> X-Google-Sender-Auth: 934b225760acc791 Cc: freebsd-hackers@freebsd.org Subject: Re: packages, libfetch, and SSL X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 22 Oct 2007 02:34:21 -0000 On 21/10/2007, David E. Thiel wrote: > > The lowest-impact way to fix this, I think, is to use SSL for pkg_adds. > There are a couple of things that would need to change to make this > happen. You can't (easily) cache data over SSL. Well, you can't use a HTTP proxy that doesn't break the SSL conversation and cache the updates. As someone who occasionally makes sure that distribution updates through a Squid proxy actually caches said updates, I'd really prefer you didn't stick package contents behind SSL. > Now, we could take another approach of PGP-signing packages instead, but > all the efforts I've seen to integrate PGP with the package management > system in the past haven't gone anywhere. The changes above seem to be > a bit more trivial than inventing a package-signing infrastructure and > putting gpg or a BSD-licensed clone into base. Perhaps using SSL to sign > packages and having a baked-in key would work as well. Considering its a solved problem (mostly!) in other distributions, and their updates are very cachable, why not do this? Adrian -- Adrian Chadd - adrian@freebsd.org