SSL downloading of resources from tarballs
Bug #1325373 reported by
Khai Do
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Core Infrastructure |
Triaged
|
Medium
|
Unassigned |
Bug Description
built artifacts from openstack ci infrastructor are uploaded to http://
Changed in openstack-ci: | |
milestone: | juno → kilo |
To post a comment you must log in.
I agree this is something we should eventually do, however the tarballs site is not intended as a primary distribution endpoint (we separately publish Python clients and libraries to PyPI and servers to Launchpad).
Also, the fact that there is no encryption when connecting to http:// tarballs. openstack. org/ is relatively obvious, so I think we should switch this bug report from private to public. There's no actual benefit to keeping it secret.