[OSM-talk] HTTPS all the Things (Automated Edit)
Bryce Jasmer
bryce at jasmer.com
Tue Feb 26 14:29:47 UTC 2019
In that situation, the admin wouldn’t redirect all of their traffic to
their test site with a potentially broken cert. The bot will only modify
objects where the admin is specifically redirecting traffic already. It
makes no assumptions. The scope is very limited for this exact reason. It
will NOT guess that just because something is listening on 443 that it
should make changes.
On Tue, Feb 26, 2019 at 5:12 AM Andy Townsend <ajt1047 at gmail.com> wrote:
> On 26/02/2019 12:34, Bryce Jasmer wrote:
> > Correct. No change will be made on anything other than the most
> > straightforward of redirects. So even http://example.com ->
> > https://example.com/home.aspx will be ignored.
>
> What about certificate checking? Suppose someone primarily uses http://
> for accessing their server, but has either a self-signed certificate on
> https:// or an untrusted / expired one (perhaps they were testing).
> Presumably in that case you wouldn't change http:// to https:// ?
>
> Best Regards,
>
> Andy
>
>
> _______________________________________________
> talk mailing list
> talk at openstreetmap.org
> https://lists.openstreetmap.org/listinfo/talk
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/talk/attachments/20190226/95602366/attachment.html>
More information about the talk
mailing list