Kunal Mehta

> I had not realized that Debian still had security updates 2+ years after the official EOL. The Debian LTS is more limited and done by a different team than...

> When the client decrypts the first message, it needs to be granted access to the private GPG key (as shown [here](https://workstation.securedrop.org/en/stable/_images/screenshot_gpg_access.png)). Do we want to do anything to anticipate...

I'll let @lsd-cat chime in, but my understanding from discussing with him and https://github.com/freedomofpress/securedrop-client/issues/1940#issuecomment-3058250427 is that we likely don't want AppArmor for electron and will instead rely on Qubes-level isolation/hardening.

If there are attacks/threats that HTTPS+APT mitigates, it would be nice to document them as counterpoints to https://whydoesaptnotusehttps.com/ I don't exactly understand the concerns mentioned in the ticket, but I...

4 years later, yeah, we should definitely switch to downloading fetching apt sources and packages over HTTPS. Specifically CVE-2019-3462 (writeup: https://justi.cz/security/2019/01/22/apt-rce.html) would've been stopped by using HTTPS. There are older...

Just checked and last month Ubuntu enabled HTTPS on their primary repositories \o/ https://bugs.launchpad.net/ubuntu/+bug/1464064 (see around comment 41). We don't have a mechanism to switch existing apt sources.list, but we...

Just to be explicit, this is blocked on the keyring package work, and can be implemented as part of that or afterwards.

The test failure looks legit...I suspect there could easily be a race condition since we run the command and then immediately look for it in the logs.

I've switched it back to the original style of one loop to run the command, and then another loop to check the results, which hopefully avoids the race condition (I...

Rebased.