securedrop icon indicating copy to clipboard operation
securedrop copied to clipboard
verified publisher icon freedomofpress

Remove/update transitional packages from install process

Open legoktm opened this issue 1 year ago • 2 comments

Description

https://github.com/freedomofpress/securedrop/blob/bbf143425a1a5b8e9146330baaaf31c104ca7425/install_files/ansible-base/roles/prepare-servers/tasks/main.yml#L6

  • apt-transport-https is obsolete now and can be removed.
  • dnsutils has been renamed to bind9-dnsutils.

legoktm avatar Feb 20 '24 21:02 legoktm

Would it be worth explicitly switching URLs in sources.list to HTTPS versions?

zenmonkeykstop avatar Feb 22 '24 00:02 zenmonkeykstop

Ubuntu still doesn't provide packages over HTTPS, see https://github.com/freedomofpress/securedrop/issues/3286 + https://bugs.launchpad.net/ubuntu/+bug/1464064. We would have to switch to a mirror that offered HTTPS, like kernel.org.

legoktm avatar Feb 22 '24 16:02 legoktm