[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Enforcing TLS for GNU ELPA
From: |
tomas |
Subject: |
Re: Enforcing TLS for GNU ELPA |
Date: |
Tue, 20 Oct 2020 09:50:05 +0200 |
User-agent: |
Mutt/1.5.21 (2010-09-15) |
On Mon, Oct 19, 2020 at 06:30:17PM -0400, Stefan Monnier wrote:
> > Some time ago I've contributed a change to a certain package
> > repository's webserver setup that responds to http:// requests with a
> > 301 redirect to the https:// version. Should the same be done for GNU
> > ELPA? Why/why not?
>
> I'd vote for no: I'm happy to encourage the use of `https` but that
> would prevent access over `http` which doesn't seem like
> a friendly choice.
>
> I'm not sure what would be the benefits (and for whom).
[...]
Wholeheartedly agree. Strongly suggest, warmly encourage: by all
means. Enforce, no.
Cheers
- t
signature.asc
Description: Digital signature