From 6243e7933c2019b653e9a598df2295acc2e06802 Mon Sep 17 00:00:00 2001
From: John-Mark Gurney <jmg@FreeBSD.org>
Date: Sun, 10 Dec 2017 20:54:30 +0000
Subject: [PATCH] switch to d/l'ing source of freebsd-update-server to be more
 secure than unauthenticated HTTP.

Reviewed by:	delphij
---
 en_US.ISO8859-1/articles/freebsd-update-server/article.xml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/en_US.ISO8859-1/articles/freebsd-update-server/article.xml b/en_US.ISO8859-1/articles/freebsd-update-server/article.xml
index 353a8e19ea..c4024a14b6 100644
--- a/en_US.ISO8859-1/articles/freebsd-update-server/article.xml
+++ b/en_US.ISO8859-1/articles/freebsd-update-server/article.xml
@@ -126,9 +126,9 @@
     <para>Download the <link
 	xlink:href="http://svnweb.freebsd.org/base/user/cperciva/freebsd-update-build/">
 	freebsd-update-server</link> software by installing
-      <package>devel/subversion</package>, and execute:</para>
+      <package>devel/subversion</package> and <package>security/ca_root_nss</package>, and execute:</para>
 
-    <screen>&prompt.user; <userinput>svn co http://svn.freebsd.org/base/user/cperciva/freebsd-update-build freebsd-update-server</userinput></screen>
+    <screen>&prompt.user; <userinput>svn co https://svn.freebsd.org/base/user/cperciva/freebsd-update-build freebsd-update-server</userinput></screen>
 
     <para>Update <filename>scripts/build.conf</filename>
       appropriately.  It is sourced during all build