* Peter Palfrader [2017-01-05 22:01]:
> So this only covers stretch and later users. Can you update your patch
> with that in mind?
Sure, attached.
From e636d7d173a476eef502b5043b239342c568e394 Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
On Thu, 05 Jan 2017, Jochen Sprickerhof wrote:
> * Peter Palfrader [2017-01-05 11:21]:
> > > +deb-src [check-valid-until=no] > > href="/archive/debian/20091004T111800Z/">http://snapshot.debian.org/archive/debian/20091004T111800Z/
> > > lenny main
> >
> > Which version of
* Peter Palfrader [2017-01-05 11:21]:
> > +deb-src [check-valid-until=no] > href="/archive/debian/20091004T111800Z/">http://snapshot.debian.org/archive/debian/20091004T111800Z/
> > lenny main
>
> Which version of apt started supporting this flag?
Good point, since apt
On Wed, 04 Jan 2017, Jochen Sprickerhof wrote:
> Package: snapshot.debian.org
> Followup-For: Bug #821333
>
> Please find a patch attached.
> Thanks for the really useful service.
> +deb [check-valid-until=no]
Package: snapshot.debian.org
Followup-For: Bug #821333
Please find a patch attached.
Thanks for the really useful service.
Cheers Jochen
>From 263d34e0b8abf7d06b16242672c6d37b179b7503 Mon Sep 17 00:00:00 2001
From: Jochen Sprickerhof
Date: Wed, 4 Jan 2017 14:30:29
Package: snapshot.debian.org
Severity: important
Advertised "-o Acquire::Check-Valid-Until=false" will impact all sources, and
using it
just suspends the protection, potentially leaving the user susceptible to
attacks.
Using "deb [check-valid-until=false]
6 matches
Mail list logo