[Popcon-developers] Bug#480860: Bug#480860: popularity-contest should encrypt contents

Bill Allombert Bill.Allombert at math.u-bordeaux1.fr
Thu Feb 19 18:31:49 UTC 2009


On Mon, May 12, 2008 at 01:31:07PM +0100, Sheridan Hutchinson wrote:
> Package: popularity-contest
> Severity: wishlist
> 
> Sadly, due to concerns about traffic eavesdropping I've decided to 
> remove popularity-contest from the machines that I administrate as 
> personally I feel it leaks too much information about the make-up of a 
> system (just my personal, paranoid viewpoint!)
> 
> If however in the future versions of popcon the contents could be 
> encrypted prior sending (which will also compress everything) then I'll 
> be happy to re-install this package in the first instance.

Hello Sheridan,

Your issue is mentionned in the popcon FAQ 
<http://popcon.debian.org/FAQ>.

We could provide a popcon public key and encrypt the report with it,
decrypting submission on the server. We would have to put the private
key on the server.

At this stage I am afraid that decrypting all the submissions would
but too high a load on the server.

Cheers,
-- 
Bill. <ballombe at debian.org>

Imagine a large red swirl here. 





More information about the Popcon-developers mailing list