Abuse Melding

Je hebt een klacht over de onderstaande posting:

23-06-2018, 12:12 door -karma4

Door Anoniem: Joh je moet bij Microsoft gaan werken. En meteen ook even de Linux distributeurs zoals Debian aanpakken. Ze gebruiken allemaal http en dat is echt goed genoeg, https voegt niets toe. Over Debian's update mechanisme: https://unix.stackexchange.com/questions/90227/why-there-is-no-https-transport-for-debian-apt-tool: Your assumption is wrong: you can use HTTPS downloads. You just have to find a mirror that supports it, and put its URL in your list of sources. You'll need to install the apt-transport-https package. Debian doesn't make HTTPS downloads easy because there is very little benefit. Debian package distribution already includes a mechanism to verify packages: all packages are signed with Gpg. If an active man-in-the-middle redirects your traffic to a server with corrupted packages, the corruption will be detected because the GPG signatures won't be valid. Using GPG rather than HTTPS has the advantage that it protects against more threats: not just against active man-in-the-middle on ...

Beschrijf je klacht (Optioneel):

captcha