guix-patches
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#25975: Use HTTPS in `guix pull`

From: Ludovic Courtès
Subject: bug#25975: Use HTTPS in `guix pull`
Date: Fri, 10 Mar 2017 11:33:41 +0100
User-agent: Gnus/5.13 (Gnus v5.13) Emacs/25.1 (gnu/linux) 
Leo Famulari <address@hidden> skribis:

> On Thu, Mar 09, 2017 at 05:11:44PM +0100, Ludovic Courtès wrote:
>> Or we could just as well ship the LE certificate instead of having a
>> package that downloads it etc.?
>
> I thought about this a bit yesterday. Only three certificate files are
> needed for the Let's Encrypt certificate store: the root certificate,
> the active intermediate, and the backup intermediate.*
>
> We know where they can be downloaded from, and we know their SHA256
> hash, so we could download them directly instead of using a package.
>
> We could also bundle them with Guix, as you suggest.
>
> What does everyone think?

Maybe a trivial-build-system package to download these 3 files and put
them in a directory would do.

Thoughts?

Ludo’.
reply via email to
[Prev in Thread] Current Thread [Next in Thread]