[LAD] https for linuxaudio.org
janina at rednote.net
Tue Nov 21 16:03:54 UTC 2017
Jeremy Jongepier writes:
> Hello David,
> > I'm currently taking over a bunch of packages for Arch Linux (mainly
> > pro-audio stuff).
> > Would it be possible to implement letsencrypt for linuxaudio.org and all
> > of its subdomains?
> It's possible for linuxaudio.org but not for all the subdomains. the
> linuxaudio.org server is a shared server that hosts projects of a
> variety of organizations and people. root at linuxaudio.org can't enforce
> the usage of SSL for all users, it's a decision the users have to take.
Well, it's quite easy, and arguably preferable, to install certs on a
domain by domain basis. This is well supported by Let's Encrypt and
> > This would greatly improve the security of the packages hosted there (or
> > rather their transfer from the server to the build machine) and help for
> > said packages not to be dropped, as more and more distros try to switch
> > to more reliable and authenticatable (is that a word?) upstreams.
> > Additionally, there is the benefit of raising privacy for users of all
> > things hosted on linuxaudio.org.
> > An example are all sources hosted here (all of which are packages in
> > Arch's main repos):
> > http://kokkinizita.linuxaudio.org/linuxaudio/downloads/index.htm
> That happens to be a subdomain root at linuxaudio.org does not maintain,
> you will have to ask the owner of that subdomain if implementing HTTPS
> is an option. If the owner is OK with that root at linuxaudio.org can
> implement it.
> root at linuxaudio.org
> Linux-audio-dev mailing list
> Linux-audio-dev at lists.linuxaudio.org
Janina Sajka, Phone: +1.443.300.2200
sip:janina at asterisk.rednote.net
Email: janina at rednote.net
Linux Foundation Fellow
Executive Chair, Accessibility Workgroup: http://a11y.org
The World Wide Web Consortium (W3C), Web Accessibility Initiative (WAI)
Chair, Accessible Platform Architectures http://www.w3.org/wai/apa
More information about the Linux-audio-dev