[JIRA] (OVIRT-2140) enforce SSL on resources.ovirt.org
by Evgheni Dereveanchin (oVirt JIRA)
[ https://ovirt-jira.atlassian.net/browse/OVIRT-2140?page=com.atlassian.jir... ]
Evgheni Dereveanchin commented on OVIRT-2140:
---------------------------------------------
Currently we use plain HTTP for CI and other things, as well as proxying and caching. With HTTPS we may lose some speed and ability to cache on the proxy however the rest should be good.
The benefits are that it’s safer to fetch unsigned packages via HTTPS as they’re protected from MITM attacks. Released versions are signed so it’s safe to fetch them even through HTTP
> enforce SSL on resources.ovirt.org
> ----------------------------------
>
> Key: OVIRT-2140
> URL: https://ovirt-jira.atlassian.net/browse/OVIRT-2140
> Project: oVirt - virtualization made easy
> Issue Type: Improvement
> Reporter: Evgheni Dereveanchin
> Assignee: infra
>
> SSL was enabled on Resources with OVIRT-1472, this ticket is to transform the non-SSL virtual hosts into redirects to the SSL version
--
This message was sent by Atlassian Jira
(v1001.0.0-SNAPSHOT#100105)
5 years, 5 months