[ https://ovirt-jira.atlassian.net/browse/OVIRT-1472?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=32801#comment-32801 ] Marc Dequènes (Duck) commented on OVIRT-1472: --------------------------------------------- Quite a while a few months ago indeed :-). We found this out while storing old wiki content for the website at the end of last year. Artifacts signing is another topic which should be discussed on devel@ I guess, but it's still our responsability to push forward. Why not create another ticket to follow this topic and see how we can help making it happen? As for TLS here, I guess letsencrypt would do well. I could probably do that. Would be nice to have the HSTS includeSubDomains activated in the future.

Add SSL to resources.ovirt.org ------------------------------

Key: OVIRT-1472 URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1472 Project: oVirt - virtualization made easy Issue Type: Improvement Components: oVirt Infra Reporter: Barak Korren Assignee: infra Priority: High

This was already requested in the past, not sure why we didn't follow up. We need to allow users to D/L packages without fear of MITM attacks. Package signing can help a little, but not everything is signed. (ISOs are not signed for example...)

-- This message was sent by Atlassian JIRA (v1000.1085.0#100052)