https://bugzilla.wikimedia.org/show_bug.cgi?id=27622

           Summary: Setup internal wikis as https only
           Product: Wikimedia
           Version: unspecified
          Platform: All
               URL: http://thread.gmane.org/gmane.science.linguistics.wiki
                    pedia.technical/52317
        OS/Version: All
            Status: NEW
          Keywords: shell
          Severity: enhancement
          Priority: Normal
         Component: General/Unknown
        AssignedTo: wikibugs-l@lists.wikimedia.org
        ReportedBy: platoni...@gmail.com
                CC: rlan...@gmail.com


>From wikitech-l thread:

Private wikis should require HTTPS by default.

Roughly this would need;
* Setup a server for this role and give it an external ip.
* Configure to answer https: with the star certificate and then perform the
normal wiki routing.
* Redirect http to https.
* Change usage of bits load.php to the local one (avoid mixed content warnings
and protect against active attackers).
* Change the dns records to the new ip.
* Profit!

No need for caching layer in front of it, as anonymous users can't read it. If
there were, $wgCookieSecure may need to be manually set.

-- 
Configure bugmail: https://bugzilla.wikimedia.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are on the CC list for the bug.

_______________________________________________
Wikibugs-l mailing list
Wikibugs-l@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l

Reply via email to