Le 11/04/2015 00:21, Debian Bug Tracking System a écrit :
> This is an automatic notification regarding your Bug report
> which was filed against the apt-cacher-ng package:
>
> #734581: Add proxy CONNECT method support for https sources
>
> It has been closed by Eduard Bloch <[email protected]>.
>
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Eduard Bloch 
> <[email protected]> by
> replying to this email.
>
>
Please,  do not close.
User SSL tunnel are not wanted, bad, and not what is needed for the 
original use case:

Original wishlist request:

"https sources are supported now, but not through a http proxy for which
support must be added (CONNECT method ?) to get it work.

apt-cacher-ng used in managed mode (ForceManaged: 1) with a proxy:

Proxy:https://username:[email protected]:3128
Remap-somesoft:/somesoft ; https://apt.foo.bar/debian/

"

The keypoint here is the managed mode.
For an http apt.foo.org source tre flow is:
user --http--> apt-cacher-ng   ------http ------> Proxy 
------http------> apt.foo.org

With the implementation of the proxy "connect" method, the flow would be for
an https apt.bar.org source:
                                                  (http + connect->Proxy)
                                                                   =
user --http--> apt-cacher-ng  ------ https through Proxy -------------> 
apt.bar.org

For cache and security purpose, we do not want to allow user to create 
tunnels trough
apt-cacher-ng.

Best regards,
Emmanuel.

Reply via email to