Twisted Website

Website should only allow HTTPS, by redirecting from HTTP to HTTPS

Bug #965248 reported by Itamar Turner-Trauring on 2012-03-26

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Twisted Website	New	Undecided	Unassigned

Bug Description

Since we have an SSL cert setup, we should use it, and only support HTTPS communication.

Revision history for this message

Glyph Lefkowitz (glyph) wrote on 2012-03-26:

See also https://bugs.launchpad.net/twisted-trac-integration/+bug/859798

Revision history for this message

Thomas Herve (therve) wrote on 2012-03-26:

Isn't the site slow enough that we shouldn't enforce SSL negociation on top of it?

Revision history for this message

Glyph Lefkowitz (glyph) wrote on 2012-03-26:

(A): SSL is fast now, haven't you heard. (Seriously. It is.)

(B): We have a pile of new fast hardware we should be taking advantage of, and I'm sure it can handle the SSL.

(C): The server doing the SSL work will be the front-end server, which is almost never overloaded; it's the buildmaster and trac that we would have to worry about giving more work to.

(D): Security is kinda of necessary in this day and age. We are doing more and more sprinting from public wifi, and every time we do, I'm anxious for a week afterwards.

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.