On Thu, Feb 16, 2017 at 6:17 PM, Carlos E. R.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
Content-ID:
El 2017-02-16 a las 15:58 +0100, Roger Oberholtzer escribió:
On Thu, Feb 16, 2017 at 12:08 PM, Carlos E. R. <> wrote:
Yes, I know what DMZ is :-) You don't need the mirror to be on the DMZ, unless you are thinking of providing a mirror for the community.
If I am not in the DMZ then all I get goes through the scanner. I do not know what it does not check. Security through obscurity.
Ah, I see.
Is it possible to download a file from OBS via something like ssh? I could then get the few failing files this way and keep them in a local repo. The local repo like this works fine - once I have the file in my paws.
Yes, via https from some repos, I think. There was one suggestion on another post via rsync from... You didn't notice this post:
Yes I did. So I am thinking I may try to use the usual http for most all things. Then, for the occasional problem packages, rsync that file to a local repo. Then the update can proceed. This could maybe obviate the need for a white list. Unless the scanner recognizes the rsync content as well. I will have to try. -- Roger Oberholtzer -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org