On Thu, Mar 23, 2017 at 8:21 AM, Nathan Cutler <ncutler@xxxxxxx> wrote: >>> BTW, there are a lot of `http://github.com/ceph/ceph/pull/xxxx` links. >>> It should be `https://github.com/ceph/ceph/pull/xxx` in our >>> ReleaseNotes.rst >> >> >> they are redirected to https://github.com/ceph/ceph/pull/xyz, so i >> guess it's fine? > > > "git clone http://github.com/ceph/ceph"; also works fine. > > Also, I am not aware of any security risk that is addressed by using SSL. > Ceph is FLOSS, after all. Why encrypt the HTTP traffic? The point of HTTPS in this context is not to keep the code a secret, but to prevent modification in flight. If you pull http:// code then your government can easily modify it in flight to implant whatever they want. John > > Nathan > > -- > To unsubscribe from this list: send the line "unsubscribe ceph-devel" in > the body of a message to majordomo@xxxxxxxxxxxxxxx > More majordomo info at http://vger.kernel.org/majordomo-info.html -- To unsubscribe from this list: send the line "unsubscribe ceph-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
