Follow-up Comment #6, bug #6694 (project savane):
>Technically, no. mail.gna.org is only server using that feature, and >that's
non-critical (lists.gnu.org does ok without).
It is not something we want to lose. Any modification to this must take this
into account. Whatever the course of action, we want this to work.
> This breaks the automatic http->https relocation, but security-wise,
that's
> more logical - if you want to stay in ssl mode, you probably don't want
your
> session cookies to be sent inadvertently clear-text.
>
> Good? :)
Not sure to understand. You mean for external links to viewcvs? Seems hard to
predict whether https is available on external links. If you want to enforce
security there, you should probably configure the group type to have https in
the viewcvs url.
_______________________________________________________
Reply to this item at:
<http://gna.org/bugs/?func=detailitem&item_id=6694>
_______________________________________________
Message posté via/par Gna!
http://gna.org/
_______________________________________________
Savane-dev mailing list
[email protected]
https://mail.gna.org/listinfo/savane-dev
