bug#25975: Use HTTPS in `guix pull`

[ng0]

Ludovic Courtès transcribed 0.8K bytes:
> Leo Famulari <address@hidden> skribis:
> 
> > On Thu, Mar 09, 2017 at 05:11:44PM +0100, Ludovic Courtès wrote:
> >> Or we could just as well ship the LE certificate instead of having a
> >> package that downloads it etc.?
> >
> > I thought about this a bit yesterday. Only three certificate files are
> > needed for the Let's Encrypt certificate store: the root certificate,
> > the active intermediate, and the backup intermediate.*
> >
> > We know where they can be downloaded from, and we know their SHA256
> > hash, so we could download them directly instead of using a package.
> >
> > We could also bundle them with Guix, as you suggest.
> >
> > What does everyone think?
> 
> Maybe a trivial-build-system package to download these 3 files and put
> them in a directory would do.
> 
> Thoughts?
> 
> Ludo’.
> 
> 

Sounds like a good idea.