[OmniOS-discuss] https://pkg.omniti.com (was: SECURITY UPDATE FOR OpenSSL & Perl; plus other fixes)
qutic development
mailinglists at qutic.com
Wed Mar 2 13:39:26 UTC 2016
> Am 02.03.2016 um 12:52 schrieb Ben Summers <ben at bens.me.uk>:
>
> I believe this was measured. pkg makes lots of small requests and doesn't appear to be very clever with session management.
>
> What results did you get when you benchmarked it?
Sorry my answer shouldn´t sound that harsh. We do have our own pkg-Server over https with a tls-terminating loadbalancer and request times are mostly under 20ms.
>> Yes signed packages are fine, but not my case. As you now your county is taking a full take - on all they can get!
> Which country?
Great Britain
> I found OmniTI to be really open to making security improvements, and I'm sure they would be very interested in learning about your specific concerns.
Thank you for pointing that out. I would be happy to get direct feedback.
- Stefan
More information about the OmniOS-discuss
mailing list