Hi phil, Not answering your question directly, but last time I wanted to secure the connection between a client and a substitute I used an ssh tunnel:
# On the server guix archive --generate-key ssh root@client guix archive --authorize < /etc/guix/signing-key.pub guix publish& ssh -N -R 8081:localhost:8080 root@client& # On the client guix build --substitute-urls=http://localhost:8081 whatever This may or may not be amendable to your situation, and may or may not lend itself to tlstunnel instead of ssh. Good luck :) Phil writes: > Hi all, > > I have a substitute server running trivially using http, but there > doesn't seem to be anything in the manual about how/where to configure > my certificate file, etc, to run a server over https. > > Can anyone advise on https setup for 'guix publish'? > > Thanks, > Phil.
