Or we could use TLS/SNI on the RP to match the good vhost with one IP.
On Wed, Apr 3, 2013 at 2:57 PM, Bertrand Jacquin <be...@meleeweb.net> wrote: > Le mercredi 03 avril 2013 à 14h52, « Tom Hacohen » a écrit : > > On 03/04/13 13:42, Carsten Haitzler (The Rasterman) wrote: > > > On Wed, 3 Apr 2013 14:23:38 +0200 Bertrand Jacquin <be...@meleeweb.net> > said: > > > > > >>> but the don't want to. thats the problem. not magically and instantly > > >>> working perfectly out of the box in their browser == fail in their > eyes. > > >> > > >> Too lazy guys. And this not what I saw on other foss projets. > Developers are > > >> not end users, not the same investment the both of them. Often, FOSS > > >> developers know about CAcert and trust it. > > > > > > this was "end users" trying to access blog stuff via https... :/ > > > > 1. Everyone should use https all the time. > > For things that need authentification. Not public ressources. > > Phabricator is br0ken, it put scheme + vhost in every href, js > inclusion, css etc, it's really not the way to make a viable website. It > should only propose absolute path to / and not the full URL. > > > 2. As Carsten has said, https doesn't really "work" for most people > > (because of CACert). > > Nothing we can do about CAcert, but it's better than a own self > generated cert. > > > We need to fix it. Either by getting free starttls certs for phab, > > build, www, and git, if possible, or figuring out another solution. > > A wildcard is necessary overwise we need one certificate per IP, and so > one vhost, one public IP. This is not a longterm solution, not really > feasble. > > A proper wildcard cert can fix the issue. But it's not something cheap. > > -- > Bertrand Jacquin, EXOSEC (http://www.exosec.fr/) > ZAC des Metz - 3 Rue du petit robinson - 78350 JOUY EN JOSAS > Tel: +33 1 30 67 60 65 - Fax: +33 1 75 43 40 70 > GSM: +33 6 71 01 70 30 - mailto:bjacq...@exosec.fr > > > ------------------------------------------------------------------------------ > Minimize network downtime and maximize team effectiveness. > Reduce network management and security costs.Learn how to hire > the most talented Cisco Certified professionals. Visit the > Employer Resources Portal > http://www.cisco.com/web/learning/employer_resources/index.html > _______________________________________________ > enlightenment-devel mailing list > enlightenment-devel@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/enlightenment-devel > > -- Steven Le Roux Jabber-ID : ste...@jabber.fr 0x39494CCB <ste...@le-roux.info> 2FF7 226B 552E 4709 03F0 6281 72D7 A010 3949 4CCB ------------------------------------------------------------------------------ Minimize network downtime and maximize team effectiveness. Reduce network management and security costs.Learn how to hire the most talented Cisco Certified professionals. Visit the Employer Resources Portal http://www.cisco.com/web/learning/employer_resources/index.html _______________________________________________ enlightenment-devel mailing list enlightenment-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/enlightenment-devel
