I believe Evgheni & Duck are working on it as part of [1] moving all oVirt services to HTTPs. Evgheni/Duck - any update on adding it to lists.ovirt.org soon? [1] https://ovirt-jira.atlassian.net/browse/OVIRT-749 On Sun, Mar 5, 2017 at 12:20 PM, Doron Fediuck <dfediuck@redhat.com> wrote:
Hi, following a report in twitter I found that we support only HTTP and not HTTPS access to the lists.ovirt.org (www.ovirt.org supports https).
The question is if we wish to allow https which is becoming mandatory these days?
another related question, is if we wish to support HSTS which is the next step and Google starts enforcing it in its domain[2].
Thanks, Doron
[1] https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security [2] http://www.zdnet.com/article/googles-hsts-rollout- forced-https-for-google-com-aims-to-help-block-attacks/
_______________________________________________ Infra mailing list Infra@ovirt.org http://lists.ovirt.org/mailman/listinfo/infra
-- Eyal Edri Associate Manager RHV DevOps EMEA ENG Virtualization R&D Red Hat Israel phone: +972-9-7692018 irc: eedri (on #tlv #rhev-dev #rhev-integ)