Security risk when downloading source package from Ubuntu.com
If I attempt to download apt-offline_
"File not downloaded: Potential security risk.
The download is offered over HTTP even though the current document was
delivered over a secure HTTPS connection. If you proceed, the download may be
corrupted or tampered with during the download process.
You can search for an alternate download source or try again later."
In Chrome I don't even have an option to download it; it fails silently.
Why does Ubuntu offer downloads over HTTP? Can I confirm this is safe without fiddling around with checksums, etc.? (Yes, I know I should fiddle around with them even with HTTPS, but I'm looking for a less intensive middle ground.) Do I have to use Firefox and circumvent the security warning to download the package?
Question information
- Language:
- English Edit question
- Status:
- Solved
- Assignee:
- No assignee Edit question
- Solved by:
- Manfred Hampl
- Solved:
- Last query:
- Last reply: