From owner-freebsd-questions@freebsd.org  Fri Sep 18 03:20:51 2015
Return-Path: <owner-freebsd-questions@freebsd.org>
Delivered-To: freebsd-questions@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5A9BB9CD0C9;
 Fri, 18 Sep 2015 03:20:51 +0000 (UTC)
 (envelope-from grarpamp@gmail.com)
Received: from mail-ig0-x22d.google.com (mail-ig0-x22d.google.com
 [IPv6:2607:f8b0:4001:c05::22d])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 2B4601840;
 Fri, 18 Sep 2015 03:20:51 +0000 (UTC)
 (envelope-from grarpamp@gmail.com)
Received: by igcrk20 with SMTP id rk20so9500921igc.1;
 Thu, 17 Sep 2015 20:20:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:from:date:message-id:subject:to:cc:content-type;
 bh=HLayvmVNaZjulOHgmfRsM4ukEN5f2xFpR39AKK65cQw=;
 b=MfRQTJSRSLzIcqAN40oEyH5ZkozHkXjMK1olmXLb7ytIcDMslGDCoSVDnfQou6mTQg
 daHkTTTQFCY3PEMRyzshQTe2bFJRk2wB6Yi9/LggKn/wfoBPuD4a3Ruar/LGkOiJo69T
 ziuGKHsdCT0aQ8DsNWvwSYWXhlbbAbe34Uovm8ZTCU2fDv5WYBfDM5nAhds9GOcQbZKN
 0XVqLWpMzkG9b77O5/MoGTDpW3bdBEJ71rbFku90ROtUIOWE2eB88n8UsRsv+biH5+V3
 RbIIZEjfeW1dZMXL/tBl0Y+/BRbh2JU4SoiV+yZLLknyZXu++yJ4WO6UAuxVPEpzPKz5
 /mfQ==
X-Received: by 10.50.62.112 with SMTP id x16mr29979773igr.23.1442546450511;
 Thu, 17 Sep 2015 20:20:50 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.36.77.77 with HTTP; Thu, 17 Sep 2015 20:20:31 -0700 (PDT)
From: grarpamp <grarpamp@gmail.com>
Date: Thu, 17 Sep 2015 23:20:31 -0400
Message-ID: <CAD2Ti2_YNkNi2b=PzFCwu3PVaP8hOzADys3=-k0AqvsDRhJpzA@mail.gmail.com>
Subject: HTTPS on freebsd.org, git, reproducible builds
To: freebsd-security@freebsd.org
Cc: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=UTF-8
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.20
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Sep 2015 03:20:51 -0000

Is there some reason "freebsd.org" and all it's
subdomains don't immediately 302 over to
https foreverafter?

Same goes for use of svn, which has no native
signable hashed commit graph, as freebsd's
canonical repo... instead of git which does.

Not to mention the irreproducible builds / pkgs / ISO's.

These days these flaws are more than a bit ridiculous,
especially for an OS, which by definition [excepting
the hardware] should be your root of trust.

Can we get a wiki project page and some traction on this?
Thanks.