The other day I started hacking on a Clojure project of mine, when I saw my firewall display this:
I’m downloading clojure.jar from http//repo.maven.apache.org over port 80! This means that I’m going to be downloading JARs over unencrypted http. I thought this was an issue with leiningen at first. As it turns out it’s not lein’s fault at all.
more here.............http://blog.ontoillogical.com/blog/2014/07/28/how-to-take-over-any-java-developer/