Serendipity Forums

User and developer community
https://board.s9y.org/

HTTPS for s9y infrastructure? (webpage, board etc.)

https://board.s9y.org/viewtopic.php?t=20862

Page 1 of 1

HTTPS for s9y infrastructure? (webpage, board etc.)

Posted: Tue Sep 13, 2016 2:33 pm
by hanno
As probably everyone knows the web is rapidly moving to HTTPS by default, supported by major players like Google and Mozilla. I welcome this, but I'm aware that opinions on this differ.

I see that the s9y infrastructure (webpage, board, blog etc.) is still on http only, https requests fail. Apart from the general move to https there are good reasons why software distribution should be especially taken care of in regards to security. And the board has a login, which makes it security sensitive as well.

So: Can we have HTTPS? Any help needed that I could offer?

Re: HTTPS for s9y infrastructure? (webpage, board etc.)

Posted: Tue Sep 13, 2016 5:05 pm
by yellowled
hanno wrote:Can we have HTTPS? Any help needed that I could offer?
We are aware of this. Judging form this issue comment, Garvin had this in mind for the relaunch of the website (I think we also discussed this about a month later at #s9ycamp), which might coincide with relaunching board, blog and forum.

Not sure if help with this is needed, but probably appreciated. :)

YL

Re: HTTPS for s9y infrastructure? (webpage, board etc.)

Posted: Wed Sep 14, 2016 9:53 am
by Lux
hanno wrote:I see that the s9y infrastructure (webpage, board, blog etc.) is still on http only, https requests fail. Apart from the general move to https there are good reasons why software distribution should be especially taken care of in regards to security. And the board has a login, which makes it security sensitive as well.
https FTW!

I second that!

Cheers

Dirk

Re: HTTPS for s9y infrastructure? (webpage, board etc.)

Posted: Mon Sep 19, 2016 1:54 pm
by garvinhicking
Yeah, I really want that. However, the server is operated by Jannis, and we don't have a free SSL certificate that we could use, and don't want a self-signed one.

The letsencrypt thing has issues on the server so that it would need to be container-ized before, which is a larger task, and Jannis didn't have time yet to perform this. I'll send him this link to maybe get on with this task... :)

Regards,
Garvin

Re: HTTPS for s9y infrastructure? (webpage, board etc.)

Posted: Sat Sep 24, 2016 3:51 pm
by thh
garvinhicking wrote:The letsencrypt thing has issues on the server so that it would need to be container-ized before, which is a larger task, and Jannis didn't have time yet to perform this.
letsencrypt-auto or now certbot-auto will just load and install everything it needs in a python virtual environment. That has worked like a charm for me on older environments (Debian Wheezy) where letsencrypt and its dependencies were not packaged yet.
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited