[01:40] <lotuspsychje> good morning
[13:37] <Maik> lotuspsychje enigma9o7[m] when upgrading from xenial to bionic, Unity will be replaced by Gnome
[13:38] <lotuspsychje> rs2009> upgrading from xenial to bionic would install GNOME, but also keep Unity7 iirc (since ubuntu-desktop added GNOME to its dependencies)
[13:54] <Maik> lotuspsychje: lol, missed that reply, i'm in a hurry at the moment
[14:48] <rs2009> lotuspsychje: yep
[15:41] <tomreyn> ravage: in case you'd like to read up more on http vs https for mirrors, i quickly found this: https://askubuntu.com/questions/146108/how-to-use-https-with-apt-get  https://unix.stackexchange.com/questions/90227/why-is-there-no-https-transport-for-debian-apt-tool
[15:41] <tomreyn> i think debian defaults to https for a couple years now
[15:42] <ravage> i understand that it makes community servers more complicated because of the certificates
[15:42] <enigma9o7[m]> Hmmm I thought they didnt cuz it caused some issue with cacheing, and was unncessary cuz signature are checked locally anyway
[15:43] <tomreyn> yes. but then, i just pointed out that a more community oriented distro than ubuntu has switched to https by default
[15:43] <ravage> my mirror has optional SSL now. i dont think it has been in any official rotation ever anyway
[15:43] <tomreyn> the launchpad official mirror list does indicate https support, where available
[15:43] <ravage> let me see if i can set that :)
[15:44] <ravage> set
[15:45] <tomreyn> it's certainly challenging to design an architecture which can handle all the issues around community maintained HTTPS mirrors properly
[15:45] <ravage> fun fact: the "mirror location information" now shows https links by default too :)
[15:46] <tomreyn> Maybe i was wrong about 'official position' then. i know that there are others with other POVs within Canonical.
[15:48] <tomreyn> (It's most likely the position of the team in Canonical which would have to handle such a transition and maintaining a new architecture, though.)
[15:48] <ravage> that is possible :D
[15:48] <tomreyn> I'm still just guessing, though.
[15:49] <tomreyn> ravage: see Spads latest comment in -mirrors, too.
[15:51] <ravage> saw it. i have a personal benefit already. i can click links in firefox now without a warning that it does not support https :)
[15:53] <tomreyn> :)
[15:53] <tomreyn> depending on what hardware you have there, you *may* need to tweak the cipher suites you're supporting. but if you do tlsv1.3 then you should be good.
[15:54] <ravage> debian 11 ;)
[15:55] <tomreyn> i guess libssl and webserver version also play a role there
[15:55] <ravage> everything works fine
[15:55] <tomreyn> :) good
[15:58] <ravage> https://mirror.united-gameserver.de/ubuntu/
[16:07] <tomreyn> oh, i didn't know myloc belonged to an italian company now, thought they had been part of the host europe / godaddy acquisition
[16:10] <ravage> Buona sera!
[16:10] <ravage> thats all i know :P
[16:10] <tomreyn> Ciao!
[16:10] <ravage> im not that involved with them yet. that may change
[16:11] <ravage> but from what i heard most of them speak decent english
[16:13] <tomreyn> qualys says you're doing great on the tls
[16:14] <ravage> so certbot did a good job :)