On Fri, Mar 09, 2012 at 11:11:48PM +0000, Matthew Toseland wrote: > On Friday 09 Mar 2012 21:37:12 Evan Daniel wrote: > > On Fri, Mar 9, 2012 at 4:21 PM, Florent Daigniere > > <nextgens at freenetproject.org> wrote: > > > Hi, > > > > > > I've been doing some sysadmin tonight: > > > - re-enabled ipv6 on all services > > > - updated the DNS records (SPF, ...) > > > - deployed a valid certificate on postfix > > > > > > Let me know if I broke something. > > > > > > I was wondering, do we have any good reason not to switch the various > > > websites to HTTPS only? (with a 301 redirect on HTTP) > > > > Awesome, thanks! > > > > I'm in favor of https only. The only real arguments against it are > > probably server cpu load. I assume that given our traffic levels, > > that's not likely to be an issue? > > When we get slashdotted, our server load can be rather high. And this is a > fairly low end VM we're running it off. > >
I don't think that CPU will ever be a problem for the kind of traffic we handle. There's plenty of (other) optimizations to be made... Florent
