Putty's been being distributed over unsecured HTTP for years - I wouldn't be sur... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		PascLeRasc on Dec 12, 2017 \| parent \| context \| favorite \| on: Microsoft Adds an OpenSSH Client to Windows 10 Putty's been being distributed over unsecured HTTP for years - I wouldn't be surprised if some companies' IT departments forbid it.

ac29 on Dec 12, 2017 | [–]

The main page [0] and main download [1] are HTTPS. GPG signatures are provided as well.

[0] https://www.chiark.greenend.org.uk/~sgtatham/putty/latest.ht...

[1] https://the.earth.li/~sgtatham/putty/latest/w64/putty-64bit-...

lostmsu on Dec 13, 2017 | | [–]

That probably changed just recently.

icedchai on Dec 13, 2017 | [–]

Downloading something over HTTPS doesn't magically make it secure.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact