HTTPS for gerrit?

Itamar Heim iheim at redhat.com
Mon Dec 31 14:29:16 UTC 2012


On 12/30/2012 08:00 AM, Karsten 'quaid' Wade wrote:
> On 12/27/2012 04:30 AM, Itamar Heim wrote:
>> On 12/27/2012 01:38 PM, Vinzenz Feenstra wrote:
>>> Hi,
>>>
>>> I would suggest that we would use https for hosting gerrit, currently
>>> you cannot even access it, it'd be great, I am not sure why it would be
>>> non-HTTPS. Even though SSL has it's issues, it's still better than plain
>>> connections.
>>>
>>
>> just need someone to get a certificate for the host and i'll configure
>> https
>
> Yeah, I decided against self-signed cert for other services to avoid the
> trust issues with that. But a certificate authority-sourced SSL cert ...
>
> We can most likely get a certificate through Red Hat; they've offered to
> me in the the past for ovirt.org. Should we?

+1.
you need one for each dns name of course.



More information about the Infra mailing list