I am not entierly sure, but I think Clinton is already working on that :) Either a properly signed cert will be obtained, or the join page will be moved to the main domain. I think that was the plan.
On Sat, Apr 12, 2014 at 12:35 AM, Sajith T S <[email protected]> wrote: > Greetings, > > It's quite comforting to know that HCoop has remained immune to the > latest internet catastrophe simply by running the stablest Debian. :) > Yay us! > > The EFF are advising HTTPS sites to implement forward secrecy as a > measure to mitigate the next Heartbleed if/when it happens. How about > HCoop? Is it possible to enable this today without breaking a bunch > of other stuff? > > Also, this report doesn't look pretty: > > https://www.ssllabs.com/ssltest/analyze.html?d=hcoop.net > > Speaking of which, I remember there being talks about HCoop getting a > "properly" signed wildcard certificate, or perhaps becoming a signing > authority by itself. I can't find the relevant thread, but I was > wondering if it's still in the plan, and if it's a thing that can be > done without breaking Clinton's back and breaking the bank, etc. > > Regards, > Sajith. > > -- > "the lyf so short, the craft so long to lerne." > -- Chaucer. > > > _______________________________________________ > HCoop-Discuss mailing list > [email protected] > https://lists.hcoop.net/listinfo/hcoop-discuss -- Sincerely yours, -- Daniil _______________________________________________ HCoop-Discuss mailing list [email protected] https://lists.hcoop.net/listinfo/hcoop-discuss
