lotuspsychje | good morning | 01:40 |
---|---|---|
Maik | lotuspsychje enigma9o7[m] when upgrading from xenial to bionic, Unity will be replaced by Gnome | 13:37 |
lotuspsychje | rs2009> upgrading from xenial to bionic would install GNOME, but also keep Unity7 iirc (since ubuntu-desktop added GNOME to its dependencies) | 13:38 |
Maik | lotuspsychje: lol, missed that reply, i'm in a hurry at the moment | 13:54 |
rs2009 | lotuspsychje: yep | 14:48 |
tomreyn | ravage: in case you'd like to read up more on http vs https for mirrors, i quickly found this: https://askubuntu.com/questions/146108/how-to-use-https-with-apt-get https://unix.stackexchange.com/questions/90227/why-is-there-no-https-transport-for-debian-apt-tool | 15:41 |
tomreyn | i think debian defaults to https for a couple years now | 15:41 |
ravage | i understand that it makes community servers more complicated because of the certificates | 15:42 |
enigma9o7[m] | Hmmm I thought they didnt cuz it caused some issue with cacheing, and was unncessary cuz signature are checked locally anyway | 15:42 |
tomreyn | yes. but then, i just pointed out that a more community oriented distro than ubuntu has switched to https by default | 15:43 |
ravage | my mirror has optional SSL now. i dont think it has been in any official rotation ever anyway | 15:43 |
tomreyn | the launchpad official mirror list does indicate https support, where available | 15:43 |
ravage | let me see if i can set that :) | 15:43 |
ravage | set | 15:44 |
tomreyn | it's certainly challenging to design an architecture which can handle all the issues around community maintained HTTPS mirrors properly | 15:45 |
ravage | fun fact: the "mirror location information" now shows https links by default too :) | 15:45 |
tomreyn | Maybe i was wrong about 'official position' then. i know that there are others with other POVs within Canonical. | 15:46 |
tomreyn | (It's most likely the position of the team in Canonical which would have to handle such a transition and maintaining a new architecture, though.) | 15:48 |
ravage | that is possible :D | 15:48 |
tomreyn | I'm still just guessing, though. | 15:48 |
tomreyn | ravage: see Spads latest comment in -mirrors, too. | 15:49 |
ravage | saw it. i have a personal benefit already. i can click links in firefox now without a warning that it does not support https :) | 15:51 |
tomreyn | :) | 15:53 |
tomreyn | depending on what hardware you have there, you *may* need to tweak the cipher suites you're supporting. but if you do tlsv1.3 then you should be good. | 15:53 |
ravage | debian 11 ;) | 15:54 |
tomreyn | i guess libssl and webserver version also play a role there | 15:55 |
ravage | everything works fine | 15:55 |
tomreyn | :) good | 15:55 |
ravage | https://mirror.united-gameserver.de/ubuntu/ | 15:58 |
=== Eickmeyer is now known as NotEickmeyer | ||
=== Eickmeyer4 is now known as Eickmeyer | ||
tomreyn | oh, i didn't know myloc belonged to an italian company now, thought they had been part of the host europe / godaddy acquisition | 16:07 |
ravage | Buona sera! | 16:10 |
ravage | thats all i know :P | 16:10 |
tomreyn | Ciao! | 16:10 |
ravage | im not that involved with them yet. that may change | 16:10 |
ravage | but from what i heard most of them speak decent english | 16:11 |
tomreyn | qualys says you're doing great on the tls | 16:13 |
ravage | so certbot did a good job :) | 16:14 |
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!