GNU bug report logs - #21382
[PATCH] Use HTTPS for package repo URLs

Previous Next

Package: emacs;

Reported by: Francois Marier <francois <at> fmarier.org>

Date: Mon, 31 Aug 2015 00:22:01 UTC

Severity: wishlist

Done: Lars Ingebrigtsen <larsi <at> gnus.org>

Bug is archived. No further changes may be made.

Full log

Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):

From: Francois Marier <francois <at> fmarier.org>
To: bug-gnu-emacs <at> gnu.org
Subject: [PATCH] Use HTTPS for package repo URLs
Date: Sun, 30 Aug 2015 12:56:37 -0700

[Message part 1 (text/plain, inline)]

In order to avoid having users pull emacs packages over HTTP (where they can
be intercepted and modified by network attackers), I have changed the
default URLs for the package repositories to use HTTPS.

The first patch is a change to the default config for elpa.gnu.org and the
second patch updates the manual and FAQ to use HTTPS URLs in its examples.

This is my first patch to emacs and while I have read the CONTRIBUTE file,
it's quite possible I've missed something so feel free to let me know if
there's any changes you'd like me to do to the formatting of the patches or
commit messages.

Francois

-- 
http://fmarier.org/

[0001-Use-HTTPS-when-talking-to-elpa.gnu.org.patch (text/x-diff, attachment)]

[0002-Use-HTTPS-for-package-repo-URLs.patch (text/x-diff, attachment)]

This bug report was last modified 6 years and 20 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #21382 [PATCH] Use HTTPS for package repo URLs

GNU bug report logs - #21382
[PATCH] Use HTTPS for package repo URLs