Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 10 Dec 2017 17:39:31 +0000
From:      Igor Mozolevsky <mozolevsky@gmail.com>
To:        Igor Mozolevsky <mozolevsky@gmail.com>, RW <rwmaillists@googlemail.com>,  freebsd security <freebsd-security@freebsd.org>
Subject:   Re: http subversion URLs should be discontinued in favor of https URLs
Message-ID:  <CADWvR2iGQOtcU=FnU-fNsso2eLCCQn=swnOLoqws%2B33V8VzX1Q@mail.gmail.com>
In-Reply-To: <20171210173222.GF5901@funkthat.com>
References:  <97f76231-dace-10c4-cab2-08e5e0d792b5@rawbw.com> <5A2709F6.8030106@grosbein.net> <11532fe7-024d-ba14-0daf-b97282265ec6@rawbw.com> <8788fb0d-4ee9-968a-1e33-e3bd84ffb892@heuristicsystems.com.au> <20171205220849.GH9701@gmail.com> <20171205231845.5028d01d@gumby.homeunix.com> <CADWvR2gVn8H5h6LYB5ddwUHYwDtiLCuYndsXhJywi7Q9vNsYvw@mail.gmail.com> <20171210173222.GF5901@funkthat.com>

next in thread | previous in thread | raw e-mail | index | archive | help
On 10 December 2017 at 17:32, John-Mark Gurney <jmg@funkthat.com> wrote:

<snip>


>
> The discussion has been for svn updates over http, not for freebsd-update
> updates which are independantly signed and verified..  There is currently
> no signatures provided via SVN to validate any source received via http.
>
>


There has been no instance of in-transit compromise reported since SVN was
introduced.

Even when the back-end was compromised, there was not detectable compromise
of the codebase [1]. So even if the codebase was compromised, unless people
*really knew* what they were doing, HTTPS would seed a false sense of
security.

There is a number of organisation that your computer is told to trust by
default who have the know-how and capability to mount MITM without one even
knowing unless that one were to manually verify CAs used for host certs,
again, HTTPS doesn't buy anything in that regards.


1. https://www.freebsd.org/news/2012-compromise.html


-- 
Igor M.



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CADWvR2iGQOtcU=FnU-fNsso2eLCCQn=swnOLoqws%2B33V8VzX1Q>