https://bz.apache.org/bugzilla/show_bug.cgi?id=55808
--- Comment #9 from Yann Ylavic <ylavic....@gmail.com> --- (In reply to Tom Fredrik Blenning from comment #7) > Both the SHA-1 checksums and the > download are linked to http addresses, but the equivalent https addresses > are available. No digest/signature is "linked" to any address, to the tarball only. > > It just so happens that the https addresses do not have a valid security > certificate which is a second bug. Could you elaborate? No alert when I access https://www.apache.org/dist/httpd/httpd-2.4.18.tar.bz2.sha1 from here. > > I'm still convinced that the resolution for this issue is correct, but the > two other bugs should be reported, would you like to do so Fedor, or should > I do it? This PR is definitively not the place to discuss this and the bugs are not clear to me, would you continue on either the docs@ or users@ mailing list first? -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: docs-unsubscr...@httpd.apache.org For additional commands, e-mail: docs-h...@httpd.apache.org
