DimitarChristoff
commented
6 years ago How bored are you
Closed einsteinsfool closed 6 years ago
DimitarChristoff
commented
6 years ago How bored are you
einsteinsfool
commented
6 years ago Just searching the web, asking projects/websites to switch to HTTPS in all places, providing PRs with all URLs changed to HTTPS version if possible, asking also to provide checksums and some other good practices like enabling long passwords.
DimitarChristoff
commented
6 years ago this is just something @kamicane or @timwienk can do from the repo settings, SSL is enabled on the box. @timwienk may be able to add a rewrite for any http traffic to https - https://github.com/mootools/website
einsteinsfool
commented
6 years ago I planned to make a PR myself for mootools/website. It's just that I work FIFO style and there are some projects I want to do first. In my latest comment I just explained why I maked such a silly issue.
ibolmo
commented
6 years ago Done :)
timwienk
commented
6 years ago @timwienk may be able to add a rewrite for any http traffic to https - https://github.com/mootools/website
That should already be the case. I recall adding a Let's Encypt SSL certificate + certbot stuff some time last year, I assume I added an http-to-https redirect as well in the nginx configuration.
DimitarChristoff
commented
6 years ago when you go to forge, SSL cert is compromised because https://github.com/mootools/website/blob/8309396fbaac2496edd9bc31eeaaa7a828a05030/views/layouts/main.jade#L19-L20 /cc @timwienk
It would look better if you changed:
MooTools Core Repository http://mootools.net...to:MooTools Core Repository https://mootools.net