Bug#954089: libplack-perl: Please verify server identity via SSL
gregor herrmann
gregoa at debian.org
Wed Mar 18 16:35:11 GMT 2020
On Wed, 18 Mar 2020 12:18:34 +0200, Damyan Ivanov wrote:
> Fixing the root of the problem seems better for me for two reasons:
>
> 1) fix what is broken instead of working around it in numerous places
> 2) consumers outside of Debian would benefit too
I agree, also with the rest of your mail. Thanks for moving this forward!
> But to fully measure the impact, it would be nice to have the number
> of failing packages built with a patched HTTP::Tiny.
I have one small concern: As the change is about checking remote SSL
certs, and tests don't/can't/must not call out to the internet, is it
possible that we won't really catch all potential issues?
Cheers,
gregor
--
.''`. https://info.comodo.priv.at -- Debian Developer https://www.debian.org
: :' : OpenPGP fingerprint D1E1 316E 93A7 60A8 104D 85FA BB3A 6801 8649 AA06
`. `' Member VIBE!AT & SPI Inc. -- Supporter Free Software Foundation Europe
`- NP: Ostbahn-Kurti & Die Chefpartie: A Schritt Vire (Zwa Schritt Zruck)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: Digital Signature
URL: <http://alioth-lists.debian.net/pipermail/pkg-perl-maintainers/attachments/20200318/be435e02/attachment.sig>
More information about the pkg-perl-maintainers
mailing list