Date: Tue, 20 Nov 2012 11:30:59 -0500 From: Gary Palmer <gpalmer@freebsd.org> To: Eitan Adler <lists@eitanadler.com> Cc: freebsd-security@freebsd.org, "xenophon\\+freebsd" <xenophon+freebsd@irtnog.org> Subject: Re: FreeBSD needs Git to ensure repo integrity [was: 2012 incident] Message-ID: <20121120163059.GD88593@in-addr.com> In-Reply-To: <CAF6rxg=RLBm=RDh=WxqwJV2F9LxwC8vExDabAjiyycLrZvu2Hw@mail.gmail.com> References: <CAD2Ti29UoFcHendR8CcdQ4FPNW1HH0O47B1i3JW00Lke2m2POg@mail.gmail.com> <CAJ-VmonryjAOW-Ty%2Bs3wj6BfWiQzxSL-waEYnQ5wLv4eFjQ_4Q@mail.gmail.com> <20121120030445.GA38037@zjl.local> <CAF6rxgkcuCRssMniTSapK92aJOkcg996tF2o22yuKG1pt6mbdQ@mail.gmail.com> <BABF8C57A778F04791343E5601659908236D2B@cinip100ntsbs.irtnog.net> <CAF6rxg=RLBm=RDh=WxqwJV2F9LxwC8vExDabAjiyycLrZvu2Hw@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Nov 20, 2012 at 11:26:42AM -0500, Eitan Adler wrote: > On 20 November 2012 04:54, xenophon\+freebsd > <xenophon+freebsd@irtnog.org> wrote: > >> As of now: > >> > >> - SVN is *the* source of truth. > > > > Would it be possible to publish FreeBSD's Subversion repository using > > HTTPS, instead of HTTP? > > %svn ls https://svn0.us-west.FreeBSD.org/base/ You will get a certificate warning. The certificates used do not appear to be officially signed by a recognised CA. The hashes of the certificate keys are on the mirror website I pointed out in my email Regards, Gary
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20121120163059.GD88593>