From 9ebb5fe748615a3ad3ecf8fbc50694900adadb94 Mon Sep 17 00:00:00 2001
From: Romain Dessort <rdessort@evolix.fr>
Date: Mon, 29 Jan 2018 11:22:46 -0500
Subject: [PATCH] Add security-cdn.debian.org to HTTPSITES whitelist

Debian migrated its security.debian.org repository to Fastly CDN
(security-cdn.debian.org) so we have to whitelist it too to make
security upgrades possible.
---
 minifirewall.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/minifirewall.conf b/minifirewall.conf
index db116f0..bb24827 100644
--- a/minifirewall.conf
+++ b/minifirewall.conf
@@ -50,7 +50,7 @@ DNSSERVEURS='0.0.0.0/0'
 # HTTP authorizations
 # (you can use DNS names but set cron to reload minifirewall regularly)
 # (if you have HTTP proxy, set 0.0.0.0/0)
-HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org mirror.evolix.org backports.debian.org hwraid.le-vert.net antispam00.evolix.org spamassassin.apache.org sa-update.space-pro.be sa-update.secnap.net www.sa-update.pccc.com sa-update.dnswl.org ocsp.int-x3.letsencrypt.org'
+HTTPSITES='security.debian.org pub.evolix.net security-cdn.debian.org volatile.debian.org mirror.evolix.org backports.debian.org hwraid.le-vert.net antispam00.evolix.org spamassassin.apache.org sa-update.space-pro.be sa-update.secnap.net www.sa-update.pccc.com sa-update.dnswl.org ocsp.int-x3.letsencrypt.org'
 
 # HTTPS authorizations
 HTTPSSITES='0.0.0.0/0'