[Jenkins-infra] Request for Mirroring Jenkins

Yuzhi Wang yuzhi.wang at tuna.tsinghua.edu.cn
Wed Sep 21 05:11:10 UTC 2016

Many ISPs use transparent cache for HTTP traffic, using HTTP would
result in permanent checksum mismatch.

We've receiving a lot of reports on "checksum mismatch" issue from our
users, and switching to HTTPS is the only solution.

Yuzhi Wang
Ph.D Candidate
Dept. of Electronic Engineering,
Tsinghua University, Beijing, P.R. China

On Wed, Sep 21, 2016, at 10:31, Daniel Beck wrote:
> > On 21.09.2016, at 03:22, Yuzhi Wang <yuzhi.wang at tuna.tsinghua.edu.cn> wrote:
> > 
> > HTTP is insecure, we'd like to wait for jekins's support for HTTPS.
> Thanks for letting us know. We'll keep your mirror off the list then.
> Please note that Jenkins verifies checksums of downloaded files, and can
> download update-center.json (which contains the expected checksums) over
> HTTPS, so at least data integrity shouldn't be a concern.

More information about the Jenkins-infra mailing list