From 0f12501760ebd151d8b2eb783fedb3d869976bc4 Mon Sep 17 00:00:00 2001
From: Romain Dessort <rdessort@evolix.fr>
Date: Mon, 29 Jan 2018 11:15:11 -0500
Subject: [PATCH] Add security-cdn.debian.org to HTTPSITES whitelist

Debian migrated its security.debian.org repository to Fastly CDN
(security-cdn.debian.org) so we have to whitelist it too to make
security upgrades possible.
---
 minifirewall/files/minifirewall.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/minifirewall/files/minifirewall.conf b/minifirewall/files/minifirewall.conf
index 0158e4ca..6c4a6d90 100644
--- a/minifirewall/files/minifirewall.conf
+++ b/minifirewall/files/minifirewall.conf
@@ -50,7 +50,7 @@ DNSSERVEURS='0.0.0.0/0'
 # HTTP authorizations
 # (you can use DNS names but set cron to reload minifirewall regularly)
 # (if you have HTTP proxy, set 0.0.0.0/0)
-HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org mirror.evolix.org backports.debian.org hwraid.le-vert.net antispam00.evolix.org spamassassin.apache.org sa-update.space-pro.be sa-update.secnap.net www.sa-update.pccc.com sa-update.dnswl.org'
+HTTPSITES='security.debian.org security-cdn.debian.org pub.evolix.net volatile.debian.org mirror.evolix.org backports.debian.org hwraid.le-vert.net antispam00.evolix.org spamassassin.apache.org sa-update.space-pro.be sa-update.secnap.net www.sa-update.pccc.com sa-update.dnswl.org'
 
 # HTTPS authorizations
 HTTPSSITES='0.0.0.0/0'