What are the plans for the CentOS repos with respect to authentication
and https everywhere? At the moment it is a trivial exercise to
perform a MTM attack during a yum update over http.
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
James B. Byrne mailto:ByrneJB@xxxxxxxxxxxxx
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
https everywhere.
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: https everywhere.
- From: "James B. Byrne" <byrnejb@xxxxxxxxxxxxx>
- Date: Fri, 15 May 2015 15:44:39 -0400
- Delivered-to: centos@xxxxxxxxxx
- Importance: Normal
- User-agent: SquirrelMail/1.4.22-4.el6
- Follow-Ups:
- Re: https everywhere.
- From: Matthew Miller
- Re: https everywhere.
- Prev by Date: Re: Condor cluster setup advice (pointers) needed
- Next by Date: Re: https everywhere.
- Previous by thread: unreachable peer
- Next by thread: Re: https everywhere.
- Index(es):
 |