Re: useNoSSLForPackages and other badly-conceived options (noticenon-hijackedthread!)
Paul Gear said:
Barry K. Nathan wrote:
> On Sat, Sep 27, 2003 at 09:41:55PM -0400, William Hooper wrote:
>
>>I would trust a local mirror of updates.redhat.com and the
>> "--packagedir"
>>option for up2date more than I would trust a proxy cache.
I don't understand why a mirror should be more /trustworthy/ than a
proxy server. Perhaps more secure in that you control when files get
deleted, but /trust/?
[snip]
Using a proxy server on my local LAN gives me the best savings in
bandwidth (only the packages i actually use are downloaded), and is
easier to manage, not to mention the fact that i use it anyway for my
client PCs.
Trust meaning that I know the package is there. As you point out, your
client PCs are using the same proxy. Unless you have an extremely large
cache the updates won't be on the proxy server for a long period of time.
With a local mirror, I can set up a new machine and be assured that all
the updates, no matter how long ago they were released, are already local.
To each his own, really.
--
William Hooper