Re: Proposal: validate TLS when fetching

To: coypu%sdf.org@localhost
Subject: Re: Proposal: validate TLS when fetching
From: Jonathan Perkin <jperkin%mnx.io@localhost>
Date: Fri, 13 Dec 2024 08:47:57 +0000

* On 2024-12-13 at 03:28 GMT, coypu%sdf.org@localhost wrote:

Any objections to a patch like the following?

I broadly agree, though I think we should put it behind FETCH_INSECURE:Uor something, just to consider cases where someone needs to fetchsecurity/mozilla-rootcerts and doesn't yet have certs, or they areobsolete, or whatever.


mktool always validates certs, but has its own builtin cert store.

Obviously after Q4 though please.

--
Jonathan Perkin   -   mnx.io   -   pkgsrc.smartos.org
Open Source Complete Cloud   www.tritondatacenter.com

References:
- Proposal: validate TLS when fetching
  - From: coypu

Prev by Date: Re: py-tables build failure on Darwin
Next by Date: Changing PKGNAME (Re: CVS commit: pkgsrc/lang/gauche)
Previous by Thread: Proposal: validate TLS when fetching
Next by Thread: Changing PKGNAME (Re: CVS commit: pkgsrc/lang/gauche)
Indexes:

Home | Main Index | Thread Index | Old Index