https://bugzilla.wikimedia.org/show_bug.cgi?id=39380
--- Comment #16 from Tyler Romeo <[email protected]> 2012-08-27 12:43:21 UTC --- (In reply to comment #14) > My thoughts on this are that: > > (1) we shouldn't set $wgSecureLogin until there's a user preference for HTTPS > (bug 29898) and a cookie to kick users from HTTP back to HTTPS); and I strongly disagree with this. Right now all WMF wikis send all passwords in plaintext over insecure connections. That is a major security vulnerability and I'm surprised we haven't resolved it earlier. Yes, it would be better if EVERYTHING was over TLS, but this is the least we can do to start enforcing a better security policy. > (2) we shouldn't set this per-wiki as it's a complete waste of time (we'll end > up with a dozen bugs asking for individual wiki changes until someone finally > just sets a default; let's just set the default reasonably from the start). I'm totally up for enabling it for all wikis as the default. (In fact, my original patchset in Gerrit did just that by accident.) So that's fine with me as long as nobody else objects. -- Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
