[tor-bugs] #29408 [Internal Services/Tor Sysadmin Team]: Can we move TB downloads to CDN?
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Feb 8 07:57:11 UTC 2019
#29408: Can we move TB downloads to CDN?
-------------------------------------------------+-------------------------
Reporter: ln5 | Owner: ln5
Type: task | Status:
| assigned
Priority: Medium | Milestone:
Component: Internal Services/Tor Sysadmin Team | Version:
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
-------------------------------------------------+-------------------------
Changes (by gk):
* cc: gk (added)
Comment:
I don't know Fastly but what made me reluctant so far is that the risk of
getting malware delivered in "official" Tor Browser binaries seems
slightly higher if we are out of control here, given that we don't have
content signing available for all platforms and who is checking signatures
anyway. While this risk might seem not pretty strong, given that chances
are not so bad that this will get detected, the potential damage in trust
for us is pretty high, even if it turns out that was due to Fastly getting
some NSLs and not "done" by us.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29408#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list