[Beowulf] No HTTPS for the mailman interface

Discussion:

j***@eagleeyet.net

2018-12-03 06:43:32 UTC

Hi Guys,

I know Chris is away, but dont you guys feel like there should be an SSL
certificate on the mailman interface as right now it is sending all
credentials over http. We can easily get an SSL certificate for free
through lets encrypt and its very easy to setup on a linux server as
well as ensure the certificate stays valid as they expire every 90 days.

Let me know what you guys think.
_______________________________________________
Beowulf mailing list, ***@beowulf.org sponsored by Penguin Computing
To change your subscription (digest mode or unsubscribe) visit http://www.beowulf.org/mailman/listinfo/beo

Tim Cutts

2018-12-03 07:28:44 UTC

Permalink

I think that's a good idea, although it's only a partial solution. Mailman sends password reminders unencrypted anyway, and presumably therefore doesn't store the passwords as hashes or whatever.

Tim

Sent from my iPhone

Post by j***@eagleeyet.net
Hi Guys,
I know Chris is away, but dont you guys feel like there should be an SSL certificate on the mailman interface as right now it is sending all credentials over http. We can easily get an SSL certificate for free through lets encrypt and its very easy to setup on a linux server as well as ensure the certificate stays valid as they expire every 90 days.
Let me know what you guys think.
_______________________________________________
To change your subscription (digest mode or unsubscribe) visit https://urldefense.proofpoint.com/v2/url?u=http-3A__www.beowulf.org_mailman_listinfo_beowulf&d=DwIGaQ&c=D7ByGjS34AllFgecYw0iC6Zq7qlm8uclZFI0SqQnqBo&r=gSesY1AbeTURZwExR_OGFZlp9YUzrLWyYpGmwAw4Q50&m=nrZ06ObS5IHKvzrbULu3swO0QdZCImpCSMYfqMalwZM&s=9ls55zOEiI3nL3Ppb0gdDjuG0U2e2tEd3zslyhi6328&e=

--
The Wellcome Sanger Institute is operated by Genome Research
Limited, a charity registered in England with number 1021457 and a
company registered in England with number 2742969, whose registered
office is 215 Euston Road, London, NW1 2BE.
_______________________________________________
Beowulf mailing list, ***@beowulf.org sponsored by Penguin Computing
To change your subscription (digest mode or unsubscribe) visit http://www.beowu

Chris Samuel

2018-12-03 15:02:12 UTC

Permalink

Post by j***@eagleeyet.net
I know Chris is away, but dont you guys feel like there should be an SSL
certificate on the mailman interface as right now it is sending all
credentials over http.

Don't worry, I've been wanting to do this for ages. From memory (no
access at the moment) port 443 is blocked by some firewall config I
don't have access to.

Now I'll be in the Bay area making contact with someone at Penguin
who can help me with this should hopefully be easier.. (crosses fingers)

Thanks for the reminder!

All the best,
Chris

--
Chris Samuel : http://www.csamuel.org/ : Melbourne, VIC
_______________________________________________
Beowulf mailing list, ***@beowulf.org sponsored by Penguin Computing
To change your subscription (digest mode or unsubscribe) visit http://www.beowulf.org/mailman/li

Continue reading on narkive:

Search results for '[Beowulf] No HTTPS for the mailman interface' (Questions and Answers)

replies

just started using Linux and i must say i like what i see now my question is?

started 2011-02-10 05:41:28 UTC

software

replies

how long it take to learn Python as a first programming language?

started 2015-01-29 23:17:19 UTC

programming & design

replies

What is the Easiest/Quickest way to get the Ambrosia recipe on Sims 3?

started 2009-11-19 20:33:29 UTC

video & online games

replies

You often hear the term 'speed of light' as the fastest. What about speed of sight?

started 2015-10-17 04:53:08 UTC

astronomy & space