[Secure-testing-commits] r21317 - / bin

[Raphael Geissert]

Author: geissert
Date: 2013-02-17 18:27:17 +0000 (Sun, 17 Feb 2013)
New Revision: 21317

Modified:
   Makefile
   bin/check-new-issues
   bin/update
Log:
Download mitre's and nist's data files via https

Debian-related files are still not checked for signatures, however.



Modified: Makefile
===================================================================
--- Makefile	2013-02-17 18:24:48 UTC (rev 21316)
+++ Makefile	2013-02-17 18:27:17 UTC (rev 21317)
@@ -186,6 +186,6 @@
 update-nvd:
 	for x in $$(seq 2002 $$(date +%Y)) ; do \
 	  name=nvdcve-$$x.xml; \
-	  wget -q -Odata/nvd/$$name http://nvd.nist.gov/download/$$name || true; \
+	  wget -q -Odata/nvd/$$name https://nvd.nist.gov/download/$$name || true; \
 	done
 	python bin/update-nvd data/nvd/nvdcve-*.xml

Modified: bin/check-new-issues
===================================================================
--- bin/check-new-issues	2013-02-17 18:24:48 UTC (rev 21316)
+++ bin/check-new-issues	2013-02-17 18:27:17 UTC (rev 21317)
@@ -87,7 +87,7 @@
 
 my $datafile="$basedir/data/CVE/list";
 my $allitemsfile="gunzip -c $basedir/../allitems.txt.gz|";
-my $allitemsurl="http://cve.mitre.org/data/downloads/allitems.txt.gz";
+my $allitemsurl="https://cve.mitre.org/data/downloads/allitems.txt.gz";
 my $removedfile="$basedir/data/packages/removed-packages";
 my $wnppurl="http://qa.debian.org/data/bts/wnpp_rm";
 my $wnppfile="../wnpp_rm";

Modified: bin/update
===================================================================
--- bin/update	2013-02-17 18:24:48 UTC (rev 21316)
+++ bin/update	2013-02-17 18:27:17 UTC (rev 21317)
@@ -8,7 +8,7 @@
 
 cd CVE
 rm -f allitems.html
-wget --quiet http://cve.mitre.org/data/downloads/allitems.html.gz
+wget --quiet https://cve.mitre.org/data/downloads/allitems.html.gz
 gunzip allitems.html.gz
 ../../bin/updatelist allitems.html ../DSA/list ../DTSA/list list > list.new
 mv -f list.new list