[guardian-dev] making Debian's software updates more private

shmick at riseup.net shmick at riseup.net
Sun Jul 13 02:16:04 EDT 2014


you could also add this to 70debconf and update over Tor

Acquire::http::Proxy "http://localhost:8118";
Acquire::https::SslForceVersion "TLSv1";



Hans-Christoph Steiner:
> 
> A few of us have been trying to figure out how to improve Debian's software
> distribution so that the software that people are using remains more private
> and difficult to snoop on a mass scale.
> 
> You can follow the discussions here:
> * https://bugs.debian.org/750522
> * https://lists.debian.org/debian-security/2014/07/msg00002.html
> * https://lists.debian.org/debian-security/2014/07/msg00022.html
> 
> I'm trying to practice what I preach here, so I set up my very first debian
> mirror.  It is hosted on my home connection, so be gentle.  It is only
> debian-security for amd64 and i386:
> 
> deb http://dju2peblv7upfz3q.onion/debian-security/ wheezy/updates main
> 
> or
> 
> deb http://dju2peblv7upfz3q.onion/debian-security/ squeeze/updates main
> 
> This is a test repo, so be sure to keep a real debian-security mirror in your
> sources.list!  Just put it after the above line, and apt-get will prefer the
> tor hidden service, but still get the latest updates available from
> debian-security.
> 
> .hc
> 
> 
> 
> _______________________________________________
> Guardian-dev mailing list
> 
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
> 
> To Unsubscribe
>         Send email to:  Guardian-dev-unsubscribe at lists.mayfirst.org
>         Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/shmick%40riseup.net
> 
> You are subscribed as: shmick at riseup.net
> 


More information about the Guardian-dev mailing list