Re: security-tracker now on https?

To: debian-admin@lists.debian.org
Cc: debian-security-tracker@lists.debian.org
Subject: Re: security-tracker now on https?
From: "Thijs Kinkhorst" <thijs@debian.org>
Date: Fri, 17 May 2013 10:47:20 +0200
Message-id: <[🔎] a3ce414f61bcd64d9de8da795555a658.squirrel@aphrodite.kinkhorst.nl>
In-reply-to: <ee0148e4e0a9a229030709a4ec9ce617.squirrel@aphrodite.kinkhorst.nl>
References: <ee0148e4e0a9a229030709a4ec9ce617.squirrel@aphrodite.kinkhorst.nl>

Hi dsa,

On Thu, April 4, 2013 11:10, Thijs Kinkhorst wrote:
> Hi admins,
>
> It was noted that the security tracker now blanket redirects to
> https://security-tracker.debian.org. This is fine of course for us DD's,
> but it presents a problem for externals using it. The tracker is often
> used by e.g. different distributions like RH and Gentoo, which may not
> have the SPI CA in their trust store by default and thus makes it
> inconvenient to them.
>
> We're not aware of any confidentiality sensitive information on that web
> site so enforcing https here does not seem strictly necessary.
>
> Is it possible to revert this change?

Did you get around to looking into this issue yet?


Thanks,
Thijs

Reply to:

Follow-Ups:
- Re: security-tracker now on https?
  - From: Peter Palfrader <weasel@debian.org>

Prev by Date: External check
Next by Date: Re: security-tracker now on https?
Previous by thread: Re: Post-release changes on soler
Next by thread: Re: security-tracker now on https?
Index(es):
- Date
- Thread