This repository was archived by the owner on Jul 24, 2021. It is now read-only.
This repository was archived by the owner on Jul 24, 2021. It is now read-only.
HTTPS support for osm replication updates #5300
Closed
Description
Reporter: rameshj1977[at]gmail.com
[Submitted to the original trac issue database at 10.09am, Wednesday, 1st April 2015]
https://planet.openstreetmap.org/replication/day/000/000/
Since the OSM updates diff support only http, I cannot update the OSM database in my production environment due to security issue. It is vulnerable to MITM(Man-In-The-Middle) attack. When I tried https url, it redirects to http url.
Is there any specific reason for not having https support ?
It would be great, if OSM gives support https. And also OSM may add md5check sum details in the xx_state.txt files.
I am ready to take this task and contribute. Can you guide me, where to start ?
Metadata
Metadata
Assignees
Type
Projects
Milestone
Relationships
Development
No branches or pull requests
Activity
openstreetmap-trac commentedon Jul 23, 2021
Author: TomH
[Added to the original trac issue at 9.29am, Tuesday, 7th April 2015]
I suspect this is just a bug in the redirector script that handles redirection of downloads of the full planet to one of the mirror sites. In this case there is no mirror site so it shouldn't redirect.
openstreetmap-trac commentedon Jul 23, 2021
Author: TomH
[Added to the original trac issue at 9.34am, Tuesday, 7th April 2015]
Actually it looks like I just set it up to redirect all https to http for some reason...
openstreetmap-trac commentedon Jul 23, 2021
Author: TomH
[Added to the original trac issue at 9.43am, Tuesday, 7th April 2015]
Fixed in [changeset:5f2de35/chef]. Adding md5s to the state files would have to be done in osmosis - see http://wiki.openstreetmap.org/wiki/Osmosis for more information.