On Wed, Nov 21, 2018 at 7:02 PM Philipp Kern wrote:
>
> Am 21.11.2018 um 15:47 schrieb Mauricio Oliveira:
> >> [...] I will note that it's also possible to copy additional
> >> root certificates into the initrd pre-install. (At least it used to work
> >> before HTTPS was generally available.)
> >
Am 21.11.2018 um 15:47 schrieb Mauricio Oliveira:
>> [...] I will note that it's also possible to copy additional
>> root certificates into the initrd pre-install. (At least it used to work
>> before HTTPS was generally available.)
> It looks like this requires rebuilding the initrd, which is some
Hi Philipp,
On Thu, Nov 15, 2018 at 7:21 AM Philipp Kern wrote:
[...]
> Why do we need to build out this insecure option more rather than the
> target having supported SSL certificates (now that Let's Encrypt and
> friends exist)? [...]
Point taken, however this seems orthogonal to the current
On 2018-11-14 15:48, Mauricio Oliveira wrote:
In fetch-url the --no-check-certificate option is conditioned to HTTPS.
In case of HTTP to HTTPS redirect, that option is not enabled, and may
cause fetch-url to fail if the certificate cannot be verified.
Since that option/functionality must be
Package: src:debian-installer-utils
Version: 1.129
Tags: patch
In fetch-url the --no-check-certificate option is conditioned to HTTPS.
In case of HTTP to HTTPS redirect, that option is not enabled, and may
cause fetch-url to fail if the certificate cannot be verified.
Since that
5 matches
Mail list logo
