On 30/01/18 00:48, James Burton wrote: > I was doing research on the ccadb.org site and was surprised to find that > the site is running only in HTTP and is not using HTTPS. Now, I understand > that GitHub pages don't support HTTPS for custom domains but you could > always use CloudFlare for HTTPS support in the meantime until GitHub > enables HTTPS for custom domains.
The Cloudflare solution turns out not to be ideal for Mozilla IT. They have instead proposed another solution using AWS and Nubis, which is being implemented in the (infrastructure-confidential) bug https://bugzilla.mozilla.org/show_bug.cgi?id=1409786 . I've pinged the bug so hopefully something should happen soon. Gerv _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy
