Dev.SN ♥ developers
Sections
Dev.SN
posted by
NCommander
on Tuesday April 01 2014, @04:00PM
from the that-was-a-bitch-to-get-working dept.
from the that-was-a-bitch-to-get-working dept.
After a significant amount of wrestling with Slash, we've got SSL working properly. Slash normally tried to prevent people from using SSL unless they were an admin or subscriber. This, combined with some absolutely horrendous buggy code, and compounded by the fact we don't use mod_ssl, was not ideal. I'm pleased to announce that we've managed to exorcise the last of the demons in this code, so right now, you can go up to your URL bar, and fiddle it over to https://dev.soylentnews.org, and it will work!
Right now, we're running with a proper SSL certificate, but secondary services are running with a wild-card CACert certificate, we'll migrate those to a conventional certificate authority once we've done the possible site rename to prevent us from having to buy multiple SSL certificates. I've had to gut the back-end pretty heavily to make this work, so please try it out, and let us know what you find. Once we're fairly certain we've exterminated all the bugs, we'll be taking a serious look at the possibility of going SSL by default.
Until then, enjoy your now-encrypted BaconNews!
Right now, we're running with a proper SSL certificate, but secondary services are running with a wild-card CACert certificate, we'll migrate those to a conventional certificate authority once we've done the possible site rename to prevent us from having to buy multiple SSL certificates. I've had to gut the back-end pretty heavily to make this work, so please try it out, and let us know what you find. Once we're fairly certain we've exterminated all the bugs, we'll be taking a serious look at the possibility of going SSL by default.
Until then, enjoy your now-encrypted BaconNews!
This discussion has been archived.
No new comments can be posted.
BaconNews: Now With Working SSL
|
Log In/Create an Account
| Top
| 1000 moderator points
| 20 comments
| Search Discussion
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
I'm not a robot like you. I don't like having disks crammed into me... unless they're Oreos, and then only in the mouth.
-- Fry
(Score: 2) by edIII on Tuesday April 01 2014, @06:34PM
Same here. I also use the HTTPS Everywhere extension so it was automatic for me the moment it was supported.
I'll let you guy knows if I have any problems.
(Score: 1) by Yog-Yogguth on Tuesday April 01 2014, @10:11PM
Strange so do I but it's not automagic here. Not when visiting the main page whether by link or typing it in and not when using RSS links.
Using HTTPS Everywhere 3.4.5
Don't worry about this on my behalf; I want to applaud the effort even if I consider SSL & HTTPS broken (with or without a CA). I use it but don't assume to gain much if anything from it, more importantly suppoprting SSL/HTTPS and TOR and anything else like it increases the chances of the site be able to support other future possibilities that might not be broken (perfection being the enemy of everything and all that).
Buck Feta? Duck Fice! And Guck Foogle too!