GNU bug report logs - #29046
[PATCH] gnu: linux-libre: Update to 4.13.10 and change URL to HTTPS.

Previous Next

Package: guix-patches;

Reported by: Rutger Helling <rhelling <at> mykolab.com>

Date: Sat, 28 Oct 2017 21:16:01 UTC

Severity: normal

Tags: patch

Done: Leo Famulari <leo <at> famulari.name>

Bug is archived. No further changes may be made.

Full log

View this message in rfc822 format

From: help-debbugs <at> gnu.org (GNU bug Tracking System)
To: Leo Famulari <leo <at> famulari.name>
Cc: tracker <at> debbugs.gnu.org
Subject: bug#29046: closed ([PATCH] gnu: linux-libre: Update to 4.13.10
 and change URL to HTTPS.)
Date: Sun, 12 Nov 2017 20:49:02 +0000

[Message part 1 (text/plain, inline)]
Your message dated Sun, 12 Nov 2017 15:48:04 -0500
with message-id <20171112204804.GC10629 <at> jasmine.lan>
and subject line Re: [bug#29046] [PATCH] gnu: linux-libre: Change URL to HTTPS.
has caused the debbugs.gnu.org bug report #29046,
regarding [PATCH] gnu: linux-libre: Update to 4.13.10 and change URL to HTTPS.
to be marked as done.

(If you believe you have received this mail in error, please contact
help-debbugs <at> gnu.org.)


-- 
29046: http://debbugs.gnu.org/cgi/bugreport.cgi?bug=29046
GNU Bug Tracking System
Contact help-debbugs <at> gnu.org with problems

[Message part 2 (message/rfc822, inline)]
From: Rutger Helling <rhelling <at> mykolab.com>
To: guix-patches <at> gnu.org
Subject: [PATCH] gnu: linux-libre: Update to 4.13.10 and change URL to HTTPS.
Date: Sat, 28 Oct 2017 23:15:16 +0200

[Message part 3 (text/plain, inline)]
Hey Guix, 

here's a patch to update linux-libre and change the URL to HTTPS.
[Message part 4 (text/html, inline)]
[0001-gnu-linux-libre-Update-to-4.13.10-and-change-URL-to-.patch (text/x-diff, attachment)]
[Message part 6 (message/rfc822, inline)]
From: Leo Famulari <leo <at> famulari.name>
To: Mark H Weaver <mhw <at> netris.org>
Cc: 29046-done <at> debbugs.gnu.org,
 Ludovic Courtès <ludo <at> gnu.org>,
 Rutger Helling <rhelling <at> mykolab.com>
Subject: Re: [bug#29046] [PATCH] gnu: linux-libre: Change URL to HTTPS.
Date: Sun, 12 Nov 2017 15:48:04 -0500

[Message part 7 (text/plain, inline)]
On Tue, Nov 07, 2017 at 02:05:24PM -0500, Mark H Weaver wrote:
> Is an active attack needed to determine which file we are downloading
> from linux-libre.fsfla.org?  I think not.  The IP address of that host
> reverse resolves to "linux-libre.fsfla.org", which makes it obvious.
> The title of the paper Ludovic cited above makes the point:

I should clarify that by "active attacker" I mean someone who is doing
anything beyond simply recording the traffic. So, if they are making
lists of file sizes of different kernel tarballs, or keeping a database
of which sites you visited, keyed by your IP / identity, that's
"active".

> Anyway, having said this, if using HTTPS for linux-libre downloads makes
> you sleep better at night, I'm okay with it.

It doesn't affect my rest, but I assume you are speaking metaphorically.
So, I pushed the change as 8420c7a3565b6a984cdd95336f66d555edc87d90.

Thanks Rutger!

[signature.asc (application/pgp-signature, inline)]
This bug report was last modified 7 years and 253 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.