|
| From: | Stefan Monnier |
| Subject: | Re: Ubuntu 16.04 server --- Contacting host: elpa.gnu.org:80 when package-refresh-contents |
| Date: | Wed, 17 Jan 2018 16:21:29 -0500 |
| User-agent: | Gnus/5.13 (Gnus v5.13) Emacs/27.0.50 (gnu/linux) |
> The upcoming Emacs 26 should be much better in this regards, as it
> uses https by default for elpa downloads. Some of the advice in that
> blog entry is still useful though.
http vs https is largely irrelevant when downloading from elpa.gnu.org
since those packages come with a PGP signature which Emacs can check
(and does check, assuming you have PGP installed).
IIRC this has been true since Emacs-25.
Stefan
| [Prev in Thread] | Current Thread | [Next in Thread] |