hub.darcs.net :: simon -> darcsden -> issue

#142https access not available

Dave Love

https access should surely be available, and presumably be enforced for authenticated access.

https://hub.darcs.net gets you some (hosting?) administrative login form.

• Kranium Gikos MendozaTue Nov 3 15:10:31 UTC 2015

  +1 to this, firefox will soon mark http pages with password fields as insecure

  https://twitter.com/rlbarnes/status/656554266744586240

• Simon MichaelWed Nov 25 15:43:46 UTC 2015

  +1. Putting this at the top of the site admin backlog.

• maerwaldSat Nov 28 02:42:40 UTC 2015
  • added tag security
  • removed tag securiity

  Fixing label.

• Simon MichaelMon Nov 30 16:43:18 UTC 2015

  See also #146

• lthmsTue May 24 06:48:22 UTC 2016

  I would also add a big +1 here. I think it’s really an important issue to address.

• Simon MichaelSat Apr 29 20:35:52 UTC 2017

  This was enabled and required on 2017/4/24 or so, thanks to Caddy and Let's Encrypt.

  This may be causing problems for some folks who do not have Let's Encrypt CA info installed on their system https://github.com/certbot/certbot/issues/2026.

• Simon MichaelSun Apr 30 16:47:16 UTC 2017
  • status set to closed

  It was happening just for bfrk on #darcs, and after various upgrades can no longer be reproduced. I guess I'll go ahead and close this.

• Andreas WagnerTue May 2 14:39:41 UTC 2017

  Issue pages such as this one aren't showing up as a "secure connection" because we're not using gravatar with https at the moment.

  Here's a small patch to fix that: https://hub.darcs.net/pointfree/darcsden-security/patch/403ede9c9988dccb811a49edab5b7bbb7c4a8d81