On Sun, Aug 18, 2019 at 09:11:06PM +0300, Lassi Kortela wrote: > Current Bigloo releases are downloaded from an old-school FTP site > at <ftp://ftp-sop.inria.fr/>. FTP is getting a bit anachronistic > nowadays, as it doesn't have SSL crypto and requires special tools > (e.g. Docker's "add" command only supports HTTP). Would it be > possible to find a secure HTTPS server to serve them?
This is only my subjective opinion and it is probably wrong, but if I had to ask developers of any source package for only one thing out of the two: a. install https on their website b. provide digital signatures of their tar.gz sources and info where I should find their public key(s) then I would be asking for b rather than a. Neither a nor b solves in full the problem of having verified source code, but at the moment I would like b, please. -- Regards, Tomasz Rola -- ** A C programmer asked whether computer had Buddha's nature. ** ** As the answer, master did "rm -rif" on the programmer's home ** ** directory. And then the C programmer became enlightened... ** ** ** ** Tomasz Rola mailto:[email protected] **
