Opened 6 years ago
Closed 3 months ago
#6981 closed defect (fixed)
HTTPS redirect for Trac missing
| Reported by: | slhck | Owned by: | |
|---|---|---|---|
| Priority: | normal | Component: | trac |
| Version: | unspecified | Keywords: | |
| Cc: | val.zapod.vz@gmail.com | Blocked By: | |
| Blocking: | Reproduced by developer: | no | |
| Analyzed by developer: | no |
Description
I noticed that when you open http://trac.ffmpeg.org it doesn't auto-forward you to https://trac.ffmpeg.org, making logins insecure and exposing user passwords and other activity in cleartext.
It'd be great if you could change the server config to always redirect such requests, as is common security practice these days.
Change History (5)
comment:1 by , 4 years ago
| Cc: | added |
|---|---|
| Status: | new → open |
comment:4 by , 11 months ago
| Cc: | removed |
|---|
comment:5 by , 3 months ago
| Resolution: | → fixed |
|---|---|
| Status: | open → closed |
Closing because this exists now. Thank you.
Note:
See TracTickets
for help on using tickets.
Yes, nice one.