As far I can tell, the encryption mentioned on the wiki for S3 [1] refers to file-level encryption. That is, it encrypts files with GPG before storing them (or after retrieving them) from S3. However, even if I have GPG encryption off, I still want S3 requests to use SSL encryption. As far as I can tell, HTTPS isn't used with S3 remotes. Is there any way to enable it (if so, it should be the default)?
I am using git-annex version: 3.20120406
Cheers, --acrefoot
[1] http://git-annex.branchable.com/special_remotes/S3/
http://hackage.haskell.org/package/hS3 is a Haskell library for S3, which git-annex uses. It does not support HTTPS. I'm sure its author would appreciate help, or maybe even just gentle motivation.
FWIW, I think that S3's authorization is designed to be pretty secure even over an un-encrypted transport. It uses HMAC to sign the request with your AWS credentials securely, and includes a date that is hopefully used to avoid replay attacks.