From owner-freebsd-security@freebsd.org Fri Sep 18 13:41:53 2015 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2CBC09CF988; Fri, 18 Sep 2015 13:41:53 +0000 (UTC) (envelope-from Daniel@Plominski.eu) Received: from root1-rz1-hetzner.plitc.eu (root1-rz1-hetzner.plitc.eu [IPv6:2a01:4f8:a0:4283::10]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "root1-rz1-hetzner.plitc.eu", Issuer "StartCom Class 2 Primary Intermediate Server CA" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id C7791177B; Fri, 18 Sep 2015 13:41:51 +0000 (UTC) (envelope-from Daniel@Plominski.eu) Received: from localhost (localhost [127.0.0.1]) by root1-rz1-hetzner.plitc.eu (Postfix) with ESMTP id 1A416AE007A; Fri, 18 Sep 2015 15:41:49 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at root1-rz1-hetzner.plitc.eu Received: from root1-rz1-hetzner.plitc.eu ([127.0.0.1]) by localhost (root1-rz1-hetzner.plitc.eu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FMNv31ls0a5M; Fri, 18 Sep 2015 15:41:46 +0200 (CEST) Received: from MacBook1-PLITC.local (public-gprs351091.centertel.pl [37.47.2.180]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: daniel@plominski.eu) by root1-rz1-hetzner.plitc.eu (Postfix) with ESMTPSA id EBBB9AE0074; Fri, 18 Sep 2015 15:41:45 +0200 (CEST) Message-ID: <55FC1498.7090902@Plominski.eu> Date: Fri, 18 Sep 2015 15:41:44 +0200 From: "Daniel DP. Plominski" MIME-Version: 1.0 To: freebsd-security@freebsd.org, freebsd-questions@freebsd.org Subject: Re: HTTPS on freebsd.org, git, reproducible builds References: <1442578892.1807598.387215049.07156D0F@webmail.messagingengine.com> <1442579551.1810383.387233801.46EBDA6D@webmail.messagingengine.com> In-Reply-To: <1442579551.1810383.387233801.46EBDA6D@webmail.messagingengine.com> Content-Type: text/plain; charset=windows-1252 Content-Transfer-Encoding: 7bit X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 18 Sep 2015 13:41:53 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 well, encryption does not cost much, most mobile devices are now fast enough for IP obfuscation there vpn providers or anonymity networks like Tor you should look for "when leaken metadata", customized Firefox versionslike the "torbundle" package or FreeBSD features such as: disabled tcp timpstamp, activated net.inet.ip.stealth etc. may be that the most information are not critical of freebsd.org on a page about political commitment, however, twice what you click on in the post snowden/nsa area, i think it is not heard now de rigueur, but should be compulsory best regards Daniel Plominski Am 18/09/15 um 14:32 schrieb Mark Felder: > > > On Fri, Sep 18, 2015, at 07:21, Mark Felder wrote: >> >>> Same goes for use of svn, which has no native >>> signable hashed commit graph, as freebsd's >>> canonical repo... instead of git which does. >>> >> >> svn is available over https >> > > I got caught up in the https discussion and didn't cover this properly. > > No, I don't think we're going to use git any time soon. There's an > official mirror here, though: > > https://github.com/freebsd/ > -----BEGIN PGP SIGNATURE----- Comment: GPGTools - https://gpgtools.org iQIcBAEBCgAGBQJV/BSXAAoJEHqkZNWiQao7eLcQALn2BmgWR+GIA61OKzBnO3xQ RKSXyJDONYhiQRG53TEmukFxfOuW4nzsWCpu4Qb+OEr+DdvbujDH+9CpzvF3CkNW iw9WfSsmtjGMpfDQU27o6+QMSJfXgNGel3iPYYr+uYwpUXks0AS+FAFQJ3vr9G/N 5jKTj0UJJvplqRc/eaRuRREfxlWL5pC8ngEILs2Wk+B54+0L3jpk9pbOO5aLkFPE F99CFSWLkx2hI6plXMHO4pwfoBXn4satcUp41flHmPTLPO9HKdfi+RaT9bfE7Apb iSQ06dGE16uGWj75/+Mv6Dt5DpIX1iKgodvGsizl2H5xviuIgKpMN9d/wMLAdKBu UGbvGgLaSlcFjwVTkN5hV5WtlpG1LHctQF3oU7iWnvZklYIPvwLUXpUp0sKrqsvi zlHywQwR7Ym3n4icRrE+l38HdZDnVAmw6DLuqTKCdXp1K4/oNywArZh9A8btX+1W i1Qz5odpqI1fiC6qXzU13ymaOTkRN1oeyuDpwjoIrLe24/kJRfIyGu91ptn4OmVC JS+XAQ1NGgFVXTvSO1HfyR5P304BvqRUxr3MK7d8iba5fIgAg5cPqicSQC1A/F5D At1+38mRtSxy7De9jHwfbEndi/sDO+gUJwfV/2KaAW4lrf7nGt727tBesBveVysk 6Jsj+nHsBKp02hkB9R4p =1Yo9 -----END PGP SIGNATURE-----