(address . bug-guix@gnu.org)
CANqtuX5PgD0sHci_3uRmhqcbwvEGcD6tR07YKJTv_XFEaMcGiA@mail.gmail.com
guix.gnu.org is not available from Russia
- Done
Details
- 3 participants
- Zomb Hacker
- Tobias Geerinckx-Rice
- Pavel Shlyak
- Owner
- unassigned
- Submitted by
- Zomb Hacker
- Severity
- normal
- Merged with
Z
T
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
a3ebf258431e406e0b8266b8a0ff12a5@tobias.gr
Hi Zomb,
Thanks for the report. This is known, and one possible work-around is
to use a VPN, or Tor: https://issues.guix.gnu.org/54370#13
I've merged these two bug reports.
As for the block itself, it was a conscious decision but not one made
directly by the Guix maintainers. The institute hosting the servers
blocked Russian IP addresses after an increase in suspicious network
activity. As you say, probably due to ‘the recent events’.
Kind regards,
T G-R
Sent from a Web browser. Excuse or enjoy my brevity.
T
(no subject)
(address . control@debbugs.gnu.org)
95dcea845394171ab8d060598d90f579@tobias.gr
P
Re: bug#55500: guix.gnu.org is not available from Russia
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
510CF078-D801-4CBC-AA3D-5DAF123821F2@pantherx.org
merge 55500 54370
Toggle quote (7 lines)
> 18 ??? 2022 ?., ? 17:19, Zomb Hacker <iceknight48@gmail.com> ???????(?):
>
> Greetings.
> Website of the GNU Guix project is not available from Russia.
> Is this a conscious decision based on the recent events, or the problem is not on your side?
> Best regards,
> Yaryshev Alexey
T
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
2c4889632b86a037eff9ed963fa81c86@tobias.gr
Hasty reply, sorry if I miss a point. [And in my hast I forgot to CC
the list, sigh. Here's another copy.]
On 2022-05-18 17:19, Zomb Hacker wrote:
Toggle quote (2 lines)
> Is there any trusted mirrors?
Depends on what you mean by ‘trusted’, but yes.
For substitutes:
~~~~~~~~~~~~~~~~
- There's an independent but trusted build farm at
"https://bordeaux.guix.gnu.org". You can add this to your list of
substitute URLs, *and* authorise its signing key[0], to make Guix poll
it for substitutes instead of [or in addition to] ci.guix.gnu.org.
- There's also a Chinese mirror of ci.guix.gnu.org at
"https://mirrors.sjtug.sjtu.edu.cn/guix". This is a true mirror: it
just serves whatever ci.guix.gnu.org does.
This means that even though it's not run by the project, its
substitutes will be signed with the ‘official’ ci.guix.gnu.org key,
which your Guix trusts out of the box. You don't need to authorise
another key, and the SJTUG admins cannot modify & sign malicious
binaries.
They can of course *see* what you download. If you're worried about
that, use Tor as explained by Ludovic.
For Guix ISOs
~~~~~~~~~~~~~
…the situation is less straightforward:
- ftp.gnu.org, which can be reached from Russia, hosts only releases,
and Guix 1.3 is over a year old by this point. It's supported, but…
- I recommend you download the equivalent to
https://guix.gnu.org/en/download/latest/ over Tor, even if that takes
a while.
I also can't tell you how to easily add alternative substitute servers
in the Guix installer itself, as I've never done so myself. Sorry.
Kind regards,
T G-R
[0]:
?