[JIRA] (OVIRT-1472) Add SSL to resources.ovirt.org
Marc Dequènes (Duck) (oVirt JIRA)
jira at ovirt-jira.atlassian.net
Fri Jun 23 08:34:50 UTC 2017
[ https://ovirt-jira.atlassian.net/browse/OVIRT-1472?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=32801#comment-32801 ]
Marc Dequènes (Duck) commented on OVIRT-1472:
---------------------------------------------
Quite a while a few months ago indeed :-). We found this out while storing old wiki content for the website at the end of last year.
Artifacts signing is another topic which should be discussed on devel@ I guess, but it's still our responsability to push forward. Why not create another ticket to follow this topic and see how we can help making it happen?
As for TLS here, I guess letsencrypt would do well. I could probably do that.
Would be nice to have the HSTS includeSubDomains activated in the future.
> Add SSL to resources.ovirt.org
> ------------------------------
>
> Key: OVIRT-1472
> URL: https://ovirt-jira.atlassian.net/browse/OVIRT-1472
> Project: oVirt - virtualization made easy
> Issue Type: Improvement
> Components: oVirt Infra
> Reporter: Barak Korren
> Assignee: infra
> Priority: High
>
> This was already requested in the past, not sure why we didn't follow up. We need to allow users to D/L packages without fear of MITM attacks.
> Package signing can help a little, but not everything is signed. (ISOs are not signed for example...)
--
This message was sent by Atlassian JIRA
(v1000.1085.0#100052)
More information about the Infra
mailing list