Vu le mode de la distribution des updates de Fedora et le nombre de repo contenant ceux-ci, je suis quand même très surpris du temps d'indisponibilité des mises à jour.....
Si vous regarder le contenu du fichier
http://mirrors.fedoraproject.org/mirrorlist?repo=fedora-9&arch=i386 vous aurez la liste des repos pour les pays européens :
# repo = fedora-9 arch = i386 country = FR country = RO country = GR country = GB country = PL country = EE country = IT country = ES country = IL country = FI country = NL country = NO country = CH country = CZ country = SE country = DK country = DE country = LV country = IS country = AT country = IE country = UA
http://fr2.rpmfind.net/linux/fedora/releases/9/Everything/i386/os
ftp://ftp.free.fr/mirrors/fedora.redhat.com/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.cru.fr/pub/linux/fedora/releases/9/Everything/i386/os
http://ftp.crihan.fr/mirrors/fedora.redhat.com/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.uvsq.fr/pub/fedora/linux/releases/9/Everything/i386/os
http://mirrors.ircam.fr/pub/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.proxad.net/mirrors/fedora.redhat.com/fedora/linux/releases/9/Everything/i386/os
http://ftp.cica.es/fedora/linux/releases/9/Everything/i386/os
http://ftp.uni-koeln.de/mirrors/fedora/linux/releases/9/Everything/i386/os
http://ultra.linux.cz/MIRRORS/fedora.redhat.com/linux/releases/9/Everything/i386/os
http://ftp.iasi.roedu.net/mirrors/fedora.redhat.com/linux/releases/9/Everything/i386/os
http://ftp.ps.pl/pub/Linux/fedora-linux/releases/9/Everything/i386/os
http://ftp.colocall.net/pub/fedora/linux/releases/9/Everything/i386/os
http://www.mirrorservice.org/sites/download.fedora.redhat.com/pub/fedora/linux/releases/9/Everything/i386/os
http://redhat.linux.ee/pub/fedora/linux/releases/9/Everything/i386/os
http://mirror.atrpms.net/fedora/linux/releases/9/Everything/i386/os
http://sunsite.informatik.rwth-aachen.de/ftp/pub/Linux/fedora/linux/releases/9/Everything/i386/os
http://ftp.SURFnet.nl/pub/os/Linux/distr/fedora/linux/releases/9/Everything/i386/os
http://ftp.heanet.ie/pub/fedora/linux/releases/9/Everything/i386/os
http://ftp.ntua.gr/pub/linux/fedora/linux/releases/9/Everything/i386/os
http://mirror.fraunhofer.de/download.fedora.redhat.com/fedora/linux/releases/9/Everything/i386/os
http://ftp.klid.dk/ftp/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.sunet.se/pub/Linux/distributions/fedora/linux/releases/9/Everything/i386/os
http://mirror.switch.ch/ftp/mirror/fedora/linux/releases/9/Everything/i386/os
http://ftp.sh.cvut.cz/MIRRORS/fedora/linux/releases/9/Everything/i386/os
http://fedora.fastbull.org/linux/releases/9/Everything/i386/os
http://ftp.uni-kl.de/pub/linux/fedora/linux/releases/9/Everything/i386/os
http://mirrors.linux.edu.lv/ftp.redhat.com/pub/fedora/linux/releases/9/Everything/i386/os
http://ftp.wcss.pl/pub/linux/fedora/linux/releases/9/Everything/i386/os
http://ftp.funet.fi/pub/mirrors/fedora.redhat.com/pub/fedora/linux/releases/9/Everything/i386/os
http://ftp.rhnet.is/pub/fedora/linux/releases/9/Everything/i386/os
http://ftp.crc.dk/fedora/linux/releases/9/Everything/i386/os
http://ftp.linux.org.uk/pub/distributions/fedora/linux/releases/9/Everything/i386/os
http://ftp.uni-bayreuth.de/linux/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.pbone.net/pub/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.uib.no/pub/fedora/linux/releases/9/Everything/i386/os
http://sunsite.icm.edu.pl/pub/Linux/fedora/linux/releases/9/Everything/i386/os
ftp://ftp.solnet.ch/mirror/fedora/linux/releases/9/Everything/i386/os
http://ftp.astral.ro/mirrors/fedora/pub/fedora/linux/releases/9/Everything/i386/os
http://gd.tuwien.ac.at/opsys/linux/fedora/linux/releases/9/Everything/i386/os
http://ftp.man.poznan.pl/pub/linux/fedora/releases/9/Everything/i386/os
Dans ces conditions, la recommandation de ne faire aucune mise à jour laisserait penser que TOUS ces miroirs seraient susceptibles de contenir des données invalides ? altérées ? compromises ?
Par ailleurs, je m'interroge sur le message suivant posté dans la mailing liste infrastructure le 11 août :
*.fedoraproject.org
* From: Mike McGrath <mmcgrath redhat com>
* To: Fedora Infrastructure List <fedora-infrastructure-list redhat com>
* Subject: *.fedoraproject.org
* Date: Mon, 11 Aug 2008 11:34:01 -0500 (CDT)
We now have a *.fedoraproject.org wildcard cert. This will make creating
websites significantly easier. We already have some plans for the
translated wiki and such. I'm going to be implementing this cert soon for
much of our infrastructure. My tests worked fine but just the same,
conversion to production might produce some cert oddness. Please do keep
your eyes open.
I've never worked with a wildcard cert before and right now plain old
"fedoraproject.org" doesn't work. This makes sense but I'm wondering if
anyone knows a way around it. Is it not possible to create a cert for
your entire domain as you'll always have at least a *.example.com and a
root "example.com" cert? correct me if I'm wrong on that.
-Mike
http://www.redhat.com/archives/fedora-infrastructure-list/2008-August/msg00073.html
Une explication sérieuse sur la nature du problème rencontré va être nécessaire.....