Re: Re: people.debian.org will move from ravel to paradis and become HTTPS only

To: debian-devel@lists.debian.org
Subject: Re: Re: people.debian.org will move from ravel to paradis and become HTTPS only
From: Steven Chamberlain <steven@pyro.eu.org>
Date: Wed, 16 Jul 2014 23:43:17 +0100
Message-id: <[🔎] 53C70005.5020009@pyro.eu.org>
In-reply-to: <[🔎] 20140713221922.GA19394@virgil.dodds.net>
References: <[🔎] 20140713221922.GA19394@virgil.dodds.net>

Some sites (I mean, deployments) like to use a caching proxy, especially
if many machines use the same resource, and/or bandwidth is scarce.  Or
even just one machine accessing the same resource often.  Maybe this
won't apply to anything particular on people.d.o, but certainly a lot of
websites are breaking this recently by becoming HTTPS-only.

In the case of people.d.o I guess most issues will arise from clients
not having HTTPS support at all, or not being willing/able to follow a
redirect.

I'm curious to know the rationale for shutting down HTTP access, because
if it is to generally protect web browsers doing web-based login and
using cookies, that would typically be covered by HSTS.  And the
privacy-concious may be using the HTTPS Everywhere add-on.

Regards,
-- 
Steven Chamberlain
steven@pyro.eu.org

Reply to:

Follow-Ups:
- Re: Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: "brian m. carlson" <sandals@crustytoothpaste.net>

References:
- Re: people.debian.org will move from ravel to paradis and become HTTPS only
  - From: Steve Langasek <vorlon@debian.org>

Prev by Date: Re: Transition plan for changing the default init system
Next by Date: Re: Re: Bug#754513: ITP: libressl -- SSL library, forked from OpenSSL
Previous by thread: Re: people.debian.org will move from ravel to paradis and become HTTPS only
Next by thread: Re: Re: people.debian.org will move from ravel to paradis and become HTTPS only
Index(es):
- Date
- Thread