From owner-freebsd-hackers@FreeBSD.ORG  Sun Nov  7 01:19:14 2010
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 9CAFA1065674;
	Sun,  7 Nov 2010 01:19:14 +0000 (UTC)
	(envelope-from tim@kientzle.com)
Received: from monday.kientzle.com (99-115-135-74.uvs.sntcca.sbcglobal.net
	[99.115.135.74])
	by mx1.freebsd.org (Postfix) with ESMTP id 7AF818FC16;
	Sun,  7 Nov 2010 01:19:14 +0000 (UTC)
Received: from [10.123.2.178] (DIR-655 [192.168.1.65])
	by monday.kientzle.com (8.14.3/8.14.3) with ESMTP id oA714OIJ084318;
	Sun, 7 Nov 2010 01:04:25 GMT (envelope-from tim@kientzle.com)
Mime-Version: 1.0 (Apple Message framework v1081)
Content-Type: text/plain; charset=us-ascii
From: Tim Kientzle <tim@kientzle.com>
In-Reply-To: <201011060017.10067.jpaetzel@freebsd.org>
Date: Sat, 6 Nov 2010 18:04:24 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <B5D26335-69B5-4CEE-AA8E-1C787D7A0201@kientzle.com>
References: <201011052316.27839.jpaetzel@freebsd.org>
	<AANLkTi=62rRhZsN4wUi6p_yokSxG0tkjUHK7gosLtTRZ@mail.gmail.com>
	<AANLkTi=ubaeN6KE5C-74G=RSUEN0tyLXu-Z5T4Vd4tLN@mail.gmail.com>
	<201011060017.10067.jpaetzel@freebsd.org>
To: Josh Paetzel <jpaetzel@freebsd.org>
X-Mailer: Apple Mail (2.1081)
Cc: freebsd-hackers@freebsd.org
Subject: Re: txt-sysinstall scrapped
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Nov 2010 01:19:14 -0000

On Nov 5, 2010, at 10:17 PM, Josh Paetzel wrote:
> On Friday, November 05, 2010 11:48:27 pm Garrett Cooper wrote:
>=20
>>>   Just to add to that (because I do find it a novel idea), 1) how
>>> are you going to properly prevent man in the middle attacks (SSL, =
TLS,
>>> etc?), and 2) what webserver would you use?
>=20
> Without putting much analysis into it, we talked about using lighttpd, =
which=20
> is BSDL.  As far as another service, it would be running for the =
install only=20
> which is in most circumstances something that happens locally.


The whole idea makes a huge amount of sense to me.
Besides the usual application HTTP servers, there are
also quite a few HTTP server libraries that could be
embedded into the installer.

Even without SSL support, this would be a big win for
both local installs and for installs within a controlled network.
Supporting installs over the public Internet would be an
interesting project, but certainly does not need to be a goal
of the first iteration.

Can't wait to see this in action!

Tim