[SOLVED] add https support for pve-no-subscription repo

[mewsf]

Currently the pve-no-subscription repository uses http://download.proxmox.com which has no https support, if I try to force use https, it will tell me the site's certificate is invalid. So why can't we add support for it? Although apt can check the packages' signature, it's still a good option to provide https access.

 

[dietmar]

So why can't we add support for it?

This is a feature, only available for customers on the enterprise repository.

 

[alexskysilk]

@dietmar while I dont begrudge you your business model, security isnt a feature. Consider the cost to your business if that domain was hijacked and poisoned, and how many of your paying customers started as freeloaders

 

[tom]

Debian and Proxmox VE packages are secure and signed, also if you got them via http.

If you still think https is needed, go for the enterprise repo.