#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: reopened Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Changes (by sparks): * status: closed => reopened * resolution: wontfix => Comment: Actually, HTTPS is needed to keep the authentication tickets a secret. It's fine that FAS authentication is encrypted but when the ticket is passed around for authentication purposes in WP in the clear it leaves your authentication open for attack (and could leave other services vulnerable that use FAS for auth). This is a known attack vector and I believe we've seen some attacks in the wild with this. -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:2> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.

#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: reopened Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Comment (by mailga): Please consider also https://fedorahosted.org/marketing-team/ticket/171 -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:4> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.

#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: reopened Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Comment (by till): maybe you can use the communityblog configuration also for the magazine since it supports https now properly: https://communityblog.fedoraproject.org/ -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:6> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.

#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: reopened Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Comment (by jflory7): This ticket was brought up in the weekly Magazine meeting tonight. Featured images are being served over SSL but not content images like screenshots found in [https://fedoramagazine.org/never-leave-irc-znc/ this article]. puiterwijk is taking a look at it now. -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:8> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.

#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: closed Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: fixed | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Changes (by puiterwijk): * resolution: => fixed * status: reopened => closed Comment: The Fedora Magazine articles have now all been fixed, and this issue should be resolved. Please reopen the ticket if you find any images or references that are still broken. -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:10> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.

#157: https doesn't work correctly on fedoramagazine.org ------------------------------+----------------------------- Reporter: sparks | Owner: chrisroberts Type: task | Status: closed Priority: major | Milestone: Future releases Component: Fedora Magazine | Severity: urgent Resolution: fixed | Keywords: Blocked By: | Blocking: ------------------------------+----------------------------- Comment (by jflory7): Replying to [comment:11 puiterwijk]: end of this week. through non-secured channels anymore. Awesome news, thanks again Patrick! -- Ticket URL: <https://fedorahosted.org/marketing-team/ticket/157#comment:12> marketing-team <https://fedoraproject.org/wiki/Marketing> Marketing team for the Fedora project.