[Top] [All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH v6 1/5] Use HTTPS for all xenbits.xen.org Git repos

  • To: Demi Marie Obenour <demi@xxxxxxxxxxxxxxxxxxxxxx>
  • From: Jan Beulich <jbeulich@xxxxxxxx>
  • Date: Wed, 22 Mar 2023 09:32:53 +0100
  • Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=suse.com; dmarc=pass action=none header.from=suse.com; dkim=pass header.d=suse.com; arc=none
  • Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=JHyXxuU1Rhypu2bnUFIt+NLA3tWX8vHS5GOBOKlaYgQ=; b=n1Q3sTKNmbP7RtIytf2wxQdKLHESdNu5NjCMovKQFj0htWLDfdZnRJ8nl8Oyn+K9rD+LHbmz3HUlHRB+y7L2ZmzCqQt5p6MKrTFo3+JK8lhvVu+iPx8YDU7xrj7tVvPfi6cSKLMtM9pIecd8Ajm4AWPuZyOtEYw9e0rzfgq8srhxCEhidP6Pn8dU5qv6DiF4YARV65R6AJ7W4XTaZkOjytzHJijM4XzkNp5ysYuV7JlJeqFYaFHiGyX+k+9xid+L4lbMGy4GpWzPhhD1CtIvq9etjh9UYaC3439MA0nIdc/map4pK9W7IpuzuJzYtE4kwCWppLvI4t+X7UfdYM0GDQ==
  • Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=VxKMWscBeKNbao5edbGtQliVlDq6v2uiMwGfKkm095Nk0+uHFYjMo264oZET7h9LkwB4sBLrIDJHrfoyhHcSY00gTppO6Gaw3kLNR7Z8yyfHO0kGYcFTdMqnoSjBKL5Qa46R1Zfh6XUde2XxwgFLZiPX+99Yeewx/kPc/qexarmhfTCwaB6ufUbgoJsCYIUnjMf05vsiuScWzMnSXxoA/p0B7Y/GVUMQHg6Uv3KuGWv0iTcPctRvsIKc+KhhgKgfY4olzskN8KTUmMwoa7WU89F9IwS00cj9pdWgiEm4JiYiJcC68mK4t85e3SioGeK+TYauWpkmsH1RRwlRbHwA+g==
  • Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=suse.com;
  • Cc: Andrew Cooper <andrew.cooper3@xxxxxxxxxx>, George Dunlap <george.dunlap@xxxxxxxxxx>, Julien Grall <julien@xxxxxxx>, Stefano Stabellini <sstabellini@xxxxxxxxxx>, Wei Liu <wl@xxxxxxx>, Konrad Rzeszutek Wilk <konrad.wilk@xxxxxxxxxx>, Ross Lagerwall <ross.lagerwall@xxxxxxxxxx>, Marek Marczykowski-Górecki <marmarek@xxxxxxxxxxxxxxxxxxxxxx>, xen-devel@xxxxxxxxxxxxxxxxxxxx
  • Delivery-date: Wed, 22 Mar 2023 08:33:15 +0000
  • List-id: Xen developer discussion <xen-devel.lists.xenproject.org>
On 21.03.2023 18:33, Demi Marie Obenour wrote:
> Obtaining code over an insecure transport is a terrible idea for
> blatently obvious reasons.  Even for non-executable data, insecure
> transports are considered deprecated.
> 
> This patch enforces the use of secure transports for all xenbits.xen.org
> Git repositories.  It was generated with the following shell script:
> 
>     git ls-files -z |
>     xargs -0 -- sed -Ei -- 
> 's@(git://xenbits\.xen\.org|http://xenbits\.xen\.org/git-http)/@https://xenbits.xen.org/git-http/@g'

I thought I had asked already, but looking through earlier conversation
it looks like I only meant to: Why not git+ssh:// instead? Iirc there
are efficiency differences between http and git protocols.

Jan

 

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.

Rackspace

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.