Mirror?

[Daniel Cederqvist]

I can offer an download mirror. Contact me daniel.cederqvist<|at|>protonmail.ch. I got a working server, 100/100 mbps and gigabit LAN. I just want to show some adsense on the mirror page in return. Reach me if you're interested.

[WPN-XM]

Hello Daniel! 

Thank you for your offer. I like the idea, but i have to decline at this point in time. Please let me briefly explain to you why.

Security is one of the reasons, why all installers are build a public build infrastructure (Travis-CI) and released directly to a public host (Github Releases).

This excludes my machine for a good reason and intentionally.

The project relies heavily on the excellent Github infrastructure for downloads. Its our offical download source.

Still, a mirror system would be nice to have, to be a bit more independent and to avoid a single point of failure.

The main problem is that the installer executables are not code-signed. This circumstance makes secure download mirroring impossible.

Without code-signing, i can not make sure, that the installers are not modified, when a third-party delivers the download to a user.

At this point in time, introducing a secure download mirror system without code-signed installers, is simply not possible out of security reasons.

This issue is blocked by https://github.com/WPN-XM/WPN-XM/issues/126. 

We may discuss the topic again, when the installers are signed.

Regards, Jens