Hi, I think the "mirror" method Michael Vogt described above is useful in many situation. In other situations, it would be highly preferable to simply have apt honor 3xx status codes and follow redirects. I can see no reason why this should be either hard or insecure. Speaking of security, as long as the packages are signed, the signatures are valid and the keys used for the signatures can be trusted: What are the implications here?
I would like the maintainers of apt/aptitude to reconsider implementing redirection in apt/aptitude. Thanks! -- apt does not handle HTTP redirects https://bugs.launchpad.net/bugs/18645 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
