[ET Trac] [Einstein Toolkit] #1224: new image in trac wiki lets browsers again report the trac page as insecure
Einstein Toolkit
trac-noreply at einsteintoolkit.org
Fri Jan 18 09:52:32 CST 2013
#1224: new image in trac wiki lets browsers again report the trac page as insecure
-----------------------------------+----------------------------------------
Reporter: knarf | Owner: hinder
Type: defect | Status: new
Priority: major | Milestone: ET_2013_05
Component: EinsteinToolkit trac | Version: development version
Resolution: | Keywords:
-----------------------------------+----------------------------------------
Comment (by hinder):
We would need an SSL certificate for build.barrywardell.net, and to add an
SSL wrapper. The SSL wrapper could, for example, be an Apache reverse
proxy configured on build, or something more lightweight like stunnel.
But the blocker at the moment is not having an SSL certificate for that
machine. Come to think of it, it would be good to have SSL on this
machine. It's a VM, so security is not so important, but it would be
annoying if it was hacked.
Are we sure that linking to an off-site SSL-served image will not lead to
a similar browser warning? It's the off-site bit I'm concerned about.
From reading around on the internet, my impression is that we would be
fine, but I wonder if someone else knows better.
I have commented out the build status image on the TRAC homepage, so that
the page is considered secure again by browsers. Apologies for not
noticing this issue!
--
Ticket URL: <https://trac.einsteintoolkit.org/ticket/1224#comment:2>
Einstein Toolkit <http://einsteintoolkit.org>
The Einstein Toolkit
More information about the Trac
mailing list