[Jenkins-infra] Request for Mirroring Jenkins
Yuzhi Wang
yuzhi.wang at tuna.tsinghua.edu.cn
Wed Sep 21 05:11:10 UTC 2016
Many ISPs use transparent cache for HTTP traffic, using HTTP would
result in permanent checksum mismatch.
We've receiving a lot of reports on "checksum mismatch" issue from our
users, and switching to HTTPS is the only solution.
Cheers,
--
Yuzhi Wang
Ph.D Candidate
Dept. of Electronic Engineering,
Tsinghua University, Beijing, P.R. China
On Wed, Sep 21, 2016, at 10:31, Daniel Beck wrote:
>
> > On 21.09.2016, at 03:22, Yuzhi Wang <yuzhi.wang at tuna.tsinghua.edu.cn> wrote:
> >
> > HTTP is insecure, we'd like to wait for jekins's support for HTTPS.
>
> Thanks for letting us know. We'll keep your mirror off the list then.
>
> Please note that Jenkins verifies checksums of downloaded files, and can
> download update-center.json (which contains the expected checksums) over
> HTTPS, so at least data integrity shouldn't be a concern.
>
More information about the Jenkins-infra
mailing list