[Haskell-cafe] Offer to mirror Hackage

Markus Läll markus.l2ll at gmail.com
Tue Dec 14 10:02:39 CET 2010


The reason for mirror was avilability, yes, and when the signatures were
only on the central sever, then the user could choose not to install
packages from mirrors, when they were not available.

But now if the signatures were generated by the uploader, then the morrors
would be just as secure as the central? I mean -- if we don't trust DNS,
then the main hackage has no special security advantages?


--
Markus Läll
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.haskell.org/pipermail/haskell-cafe/attachments/20101214/b7990143/attachment.htm>


More information about the Haskell-Cafe mailing list