From d29a0532d2499db249e4966fbb757ad05e29ad48 Mon Sep 17 00:00:00 2001
From: Mikaela Suomalainen <mikaela+git@mikaela.info>
Date: Wed, 23 Jan 2019 10:18:35 +0200
Subject: [PATCH] Debian sources.list: disable http security, use https CDN &
 Tor

---
 etc/apt/sources.list/stable  | 9 +++++----
 etc/apt/sources.list/testing | 9 +++++----
 2 files changed, 10 insertions(+), 8 deletions(-)

diff --git a/etc/apt/sources.list/stable b/etc/apt/sources.list/stable
index bcc615de..bcea67ea 100644
--- a/etc/apt/sources.list/stable
+++ b/etc/apt/sources.list/stable
@@ -15,12 +15,13 @@ deb-src https://deb.debian.org/debian-security/ stable/updates main contrib non-
 deb https://deb.debian.org/debian-debug stable-proposed-updates-debug main contrib non-free
 
 ## Security repo directly
-deb http://security.debian.org/ stable/updates main contrib non-free
-deb-src http://security.debian.org/ stable/updates main contrib non-free
+# To be enabled AFTER it gets https, meanwhile CDN & Tor must be enough.
+#deb http://security.debian.org/ stable/updates main contrib non-free
+#deb-src http://security.debian.org/ stable/updates main contrib non-free
 
 ## Security repos over Tor
-#deb tor+http://sgvtcaew4bxjd7ln.onion/debian-security stable/updates main contrib non-free
-#deb-src tor+http://sgvtcaew4bxjd7ln.onion/debian-security stable/updates main contrib non-free
+deb tor+http://sgvtcaew4bxjd7ln.onion/debian-security stable/updates main contrib non-free
+deb-src tor+http://sgvtcaew4bxjd7ln.onion/debian-security stable/updates main contrib non-free
 ## https://bugs.debian.org/894081
 #deb http://ktqxbqrhg5ai2c7f.onion/debian-debug stable-proposed-updates-debug main contrib non-free
 
diff --git a/etc/apt/sources.list/testing b/etc/apt/sources.list/testing
index eb184df1..fb35db88 100644
--- a/etc/apt/sources.list/testing
+++ b/etc/apt/sources.list/testing
@@ -15,12 +15,13 @@ deb-src https://deb.debian.org/debian-security/ testing/updates main contrib non
 deb https://deb.debian.org/debian-debug testing-proposed-updates-debug main contrib non-free
 
 ## Security repo directly
-deb http://security.debian.org/ testing/updates main contrib non-free
-deb-src http://security.debian.org/ testing/updates main contrib non-free
+# To be enabled AFTER it gets https, meanwhile CDN & Tor must be enough.
+#deb http://security.debian.org/ testing/updates main contrib non-free
+#deb-src http://security.debian.org/ testing/updates main contrib non-free
 
 ## Security repos over Tor
-#deb tor+http://sgvtcaew4bxjd7ln.onion/debian-security testing/updates main contrib non-free
-#deb-src tor+http://sgvtcaew4bxjd7ln.onion/debian-security testing/updates main contrib non-free
+deb tor+http://sgvtcaew4bxjd7ln.onion/debian-security testing/updates main contrib non-free
+deb-src tor+http://sgvtcaew4bxjd7ln.onion/debian-security testing/updates main contrib non-free
 ## https://bugs.debian.org/894081
 #deb http://ktqxbqrhg5ai2c7f.onion/debian-debug testing-proposed-updates-debug main contrib non-free