09:42:50 <john_r365[m]> Ok, just to slightly further that conversation from a few days ago. We had said that the server housing the binaries for CLI/GUI/RPC etc. is high risk. Malicious use of it could lead to binaries that swindle users funds.... (full message at https://libera.ems.host/_matrix/media/r0/download/libera.chat/e7f5863bb6d7273d434471563c91a1e120cd85cc)
09:44:50 <john_r365[m]> On the new domain, some content could be created (maybe a banner?) to make people specifically aware that they should continue to download binaries from getmonero.org - as that's the only trusted source
09:45:54 <john_r365[m]> Thoughts fluffypony ?
09:56:50 <ErCiccione> john_r365: could be a good solution. If there is enough interest i would open an issue on github. Easier to track and not lose it
11:15:46 <selsta> I honestly don't understand the suggestion.
11:16:04 <selsta> The only save way is if users check hashes + signature.
11:16:10 <selsta> safe*
11:21:23 <selsta> In my opinion if costs become an issue we should use Github for hosting binaries. They offer a free CDN for open source projects.
11:21:39 <selsta> (We already upload the binaries to Github)
11:22:55 <selsta> As for the website, it's a static website. It shouldn't be too difficult to find a host for it. Github Pages, Netlify, ...
11:25:09 <selsta> This should be significantly less expensive. Also I'm skeptical that this would be a significantly less secure solution.
11:25:55 <selsta> Plus it would mean that we don't have to do maintenance ourselves.
11:26:21 <selsta> The only thing we would have to check is if Github CDN is available from China, as that was one of the reasons to use our own.
11:32:06 <selsta> ^ suggestion is for when costs + finding someone for maintaining becomes an issue
12:35:07 <moneromooo> FWIW I have this GUI program that downloads and checks signatures from the gitian repo. I suspect noone knows about it beyond a dozen people. Others have made similar programs as well. They make checking signatures idiot proof (I think).
12:36:18 <moneromooo> Does require a connection to github though, for access to the gitian repo.
13:02:28 <john_r365[m]> <moneromooo> "FWIW I have this GUI program..." <- Could you share more details of this?
13:09:13 <john_r365[m]> <selsta> "I honestly don't understand..." <- To clarify…... (full message at https://libera.ems.host/_matrix/media/r0/download/libera.chat/1174b8895b3f40847fe22cf7b09a49992102417e)
13:10:25 <selsta> Github pages wouldn't support Tor.
13:14:50 <john_r365[m]> Ok
13:30:33 <carrington[m]> My recent ramblings seem relevant here:
13:30:33 <carrington[m]> https://github.com/monero-project/meta/issues/634
13:30:33 <carrington[m]> Basically: torrents good
13:34:51 <carrington[m]> If "everything except downloads" was a separate (less secured) website, people would be encouraged in that scenario to verify the signatures (e.g. moo's tool) and/or check that the magnet link they are using matches what is posted widely by multiple trusted people
14:14:32 <moneromooo> john_r365[m]: https://github.com/moneromooo-monero/monero-update
19:49:20 <fluffypony> selsta: john_r365[m] is arguing for weaker access to the GetMonero server, ie. open it up to more people and keep the downloads secure
19:49:33 <fluffypony> john_r365[m]: any banner etc. can and will be trivially removed by an attacker
19:50:24 <fluffypony> getmonero.org is a critical part of the ecosystem, as most people don't even bother checking sigs / hashes
19:50:43 <fluffypony> we have an obligation to protect and defend that to the best of our ability, even if it introduces some inconvenience 
19:52:45 <selsta> yea, if the website is insecure it doesn't matter how secure the download server is
21:03:12 <john_r365[m]> Fluffypony: thanks for the reply
21:03:12 <john_r365[m]> For clarity, I’m just trying to brainstorm a way to move past the current status quo
21:03:12 <john_r365[m]> I’m not wedded to any single solution for that