[WIP] Secure Transport for Linux Package Managers

[wj25czxj47bu6q]

Relevant Links:

• Fedora Package Delivery Security
  • Note that there is a Repo-expire field now, which presumably is what the author was saying didn't exist at the time
• Attacks against GPG signed APT repositories
• Remote Code Execution in apt/apt-get
• Why does DNF and zypper use HTTPS?
• https://askubuntu.com/a/146117

How to:

• Fedora
• Kali (same for all Ubuntu derivatives when supported)

[netlify]

✅ Deploy Preview for privsec-dev ready!

Built without sensitive environment variables

Name	Link
🔨 Latest commit	5082a4d
🔍 Latest deploy log	https://app.netlify.com/sites/privsec-dev/deploys/634e3965c482ac00095ee3d3
😎 Deploy Preview	https://deploy-preview-74--privsec-dev.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify site settings.

[cosmicproc]

sudo cp /etc/pacman.d/mirrorlist /etc/pacman.d/mirrorlist.backup
curl -Ls "https://archlinux.org/mirrorlist/all/https" | sed -e 's/^#Server/Server/' -e '/^#/d' | sudo tee /etc/pacman.d/mirrorlist &>/dev/null
sudo pacman -S --noconfirm pacman-contrib && rankmirrors -n 6 /etc/pacman.d/mirrorlist | sudo tee /etc/pacman.d/mirrorlist &>/dev/null # This is optional. It may take a while.
sudo pacman -Syyu

This can be used on Arch Linux to update pacman mirrors with the https ones fetched from https://archlinux.org/mirrorlist/all/https

Alternatively, Reflector can be used with the --protocol https flag.