guix.gnu.org is not available from Russia

  • Done
  • quality assurance status badge
Details
3 participants
  • Zomb Hacker
  • Tobias Geerinckx-Rice
  • Pavel Shlyak
Owner
unassigned
Submitted by
Zomb Hacker
Severity
normal
Merged with
Z
Z
Zomb Hacker wrote on 18 May 2022 16:19
(address . bug-guix@gnu.org)
CANqtuX5PgD0sHci_3uRmhqcbwvEGcD6tR07YKJTv_XFEaMcGiA@mail.gmail.com
Greetings.
Website of the GNU Guix project is not available from Russia.
Is this a conscious decision based on the recent events, or the problem is
not on your side?
Best regards,
Yaryshev Alexey
Attachment: file
T
T
Tobias Geerinckx-Rice wrote on 18 May 2022 17:12
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
a3ebf258431e406e0b8266b8a0ff12a5@tobias.gr
Hi Zomb,

Thanks for the report. This is known, and one possible work-around is

I've merged these two bug reports.

As for the block itself, it was a conscious decision but not one made
directly by the Guix maintainers. The institute hosting the servers
blocked Russian IP addresses after an increase in suspicious network
activity. As you say, probably due to ‘the recent events’.

Kind regards,

T G-R

Sent from a Web browser. Excuse or enjoy my brevity.
T
T
Tobias Geerinckx-Rice wrote on 18 May 2022 17:12
(no subject)
(address . control@debbugs.gnu.org)
95dcea845394171ab8d060598d90f579@tobias.gr
merge 55500 54370
P
P
Pavel Shlyak wrote on 18 May 2022 17:11
Re: bug#55500: guix.gnu.org is not available from Russia
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
510CF078-D801-4CBC-AA3D-5DAF123821F2@pantherx.org
merge 55500 54370

Toggle quote (7 lines)
> 18 ??? 2022 ?., ? 17:19, Zomb Hacker <iceknight48@gmail.com> ???????(?):
>
> Greetings.
> Website of the GNU Guix project is not available from Russia.
> Is this a conscious decision based on the recent events, or the problem is not on your side?
> Best regards,
> Yaryshev Alexey
T
T
Tobias Geerinckx-Rice wrote on 18 May 2022 18:28
(name . Zomb Hacker)(address . iceknight48@gmail.com)(address . 55500@debbugs.gnu.org)
2c4889632b86a037eff9ed963fa81c86@tobias.gr
Hasty reply, sorry if I miss a point. [And in my hast I forgot to CC
the list, sigh. Here's another copy.]

On 2022-05-18 17:19, Zomb Hacker wrote:
Toggle quote (2 lines)
> Is there any trusted mirrors?

Depends on what you mean by ‘trusted’, but yes.

For substitutes:
~~~~~~~~~~~~~~~~

- There's an independent but trusted build farm at
"https://bordeaux.guix.gnu.org". You can add this to your list of
substitute URLs, *and* authorise its signing key[0], to make Guix poll
it for substitutes instead of [or in addition to] ci.guix.gnu.org.

- There's also a Chinese mirror of ci.guix.gnu.org at
"https://mirrors.sjtug.sjtu.edu.cn/guix". This is a true mirror: it
just serves whatever ci.guix.gnu.org does.
This means that even though it's not run by the project, its
substitutes will be signed with the ‘official’ ci.guix.gnu.org key,
which your Guix trusts out of the box. You don't need to authorise
another key, and the SJTUG admins cannot modify & sign malicious
binaries.

They can of course *see* what you download. If you're worried about
that, use Tor as explained by Ludovic.

For Guix ISOs
~~~~~~~~~~~~~

…the situation is less straightforward:

- ftp.gnu.org, which can be reached from Russia, hosts only releases,
and Guix 1.3 is over a year old by this point. It's supported, but…

- I recommend you download the equivalent to
https://guix.gnu.org/en/download/latest/ over Tor, even if that takes
a while.

I also can't tell you how to easily add alternative substitute servers
in the Guix installer itself, as I've never done so myself. Sorry.

Kind regards,

T G-R

[0]:
?
Your comment

This issue is archived.

To comment on this conversation send an email to 55500@debbugs.gnu.org

To respond to this issue using the mumi CLI, first switch to it
mumi current 55500
Then, you may apply the latest patchset in this issue (with sign off)
mumi am -- -s
Or, compose a reply to this issue
mumi compose
Or, send patches to this issue
mumi send-email *.patch