[19:56] <kenyon> where would a bug report go for this issue?: the TLS certificate of https://ddebs.ubuntu.com/ does not contain a SAN for ddebs.ubuntu.com. I see also a mention of this in https://bugs.launchpad.net/ddeb-retriever/+bug/1976233/comments/3 ddebs reference: https://wiki.ubuntu.com/Debug%20Symbol%20Packages
[20:34] <kenyon> also, this is arguably a bug in apt-mirror, but apt-mirror only works with compressed index files due to https://github.com/apt-mirror/apt-mirror/commit/76bd728ec6e799073183622ea13c3ca9b4f65e82 so doesn't work with ddebs.ubuntu.com's uncompressed index files
[20:35] <mcarvalhor> Hey! Please report to mirrors@ubuntu.com
[20:49] <mcarvalhor> @kenyon You can report the issue with apt-mirror here by creating a bug: https://bugs.launchpad.net/ddeb-retriever
[20:50] <kenyon> mcarvalhor: thanks, I'm working on fixing it in apt-mirror though, since ddebs.ubuntu.com is not the only place this problem occurs. https://github.com/apt-mirror/apt-mirror/issues/187
[20:51] <kenyon> emailing about the cert issue now
[20:53] <mcarvalhor> Also, I've just verified that ddebs.ubuntu.com is actually a HTTP-only service: https://wiki.ubuntu.com/Debug%20Symbol%20Packages
[20:54] <mcarvalhor> The issue you see when trying to access HTTPS endpoint is because it's behind a content cache, but that port is not configured for ddebs.ubuntu.com.
[20:57] <kenyon> yeah, it's just an annoyance since web browsers default to HTTPS-only these days, so you have to manually make an exception to browse it
[20:57] <kenyon> but yeah for use by apt I understand it's plaintext only
[21:37] <hloeung> I think we need to loop in ubuntu-devel, who, IIRC, are the ddebs.u.c service owners
[21:37] <hloeung> ultimately, I think it's their call if we should offer ddebs over HTTPS or not