Page MenuHomePhabricator
Create Task
Maniphest T35293

Certificate security warning for https://en.planet.wikimedia.org
Closed, ResolvedPublic
Actions

Description

This Connection is Untrusted

      
      
      
      
        
You have asked Firefox to connect

securely to en.planet.wikimedia.org, but we can't confirm that your connection is secure.

Normally, when you try to connect securely,

sites will present trusted identification to prove that you are
going to the right place. However, this site's identity can't be verified.

        
        
        
What Should I Do?

  If you usually connect to

this site without problems, this error could mean that someone is
trying to impersonate the site, and you shouldn't continue.

  

        
        
        
        
Technical Details
en.planet.wikimedia.org uses an invalid security certificate.

The certificate is only valid for the following names:

*.wikimedia.org , wikimedia.org

(Error code: ssl_error_bad_cert_domain)

Version: unspecified
Severity: minor

Details

Reference
bz33293

Event Timeline

bzimport raised the priority of this task from to Lowest.Nov 22 2014, 12:03 AM
bzimport added a project: Wikimedia-Planet.
bzimport set Reference to bz33293.
bzimport added a subscriber: Unknown Object (MLST).
Billinghurst created this task.Dec 21 2011, 5:32 AM
MarkAHershberger added a comment.Dec 21 2011, 6:59 PM

SSL on planet isn't really going to be supported right now. At least you aren't being redirected to a non-planet website.

From https://rt.wikimedia.org/Ticket/Display.html?id=1854#txn-44455, CT Woo says:

Per discussion in EMGT, let's take off https for planet.wikimedia.org for the
time being.

Adding ctwoo to see if he has anything else to add. Otherwise, resolving this later.

Billinghurst added a comment.Dec 22 2011, 12:24 PM

Then someone from the technical department may wish to address ...

https://en.wikipedia.org/wiki/Wikipedia:Wikipedia_Signpost/2011-12-19/Technology_report

No more planetary problems on https: With the resolution of bug #32028, visitors attempting to view certain Wikimedia blog "planets" will no longer be redirected away from the main site when trying (manually or automatically) to switch to the secure, https version of the site.

Aklapper added a comment.Nov 17 2012, 5:27 PM

"now the website will go through key exchange (sadly still with the
warning) and then redirect you to to the unencrypted equivalent page."

So the original issue is still valid, but this might be a WONTFIX.

Dzahn added a comment.Jan 25 2013, 11:00 PM

We are going to support SSL on planet in a little while now. Actually we got approval to buy a wildcard cert just for *.planet and this is being ordered now.

Dzahn added a comment.Jan 25 2013, 11:01 PM

P.S. Planet is an IPv6-enabled service since yesterday.

Aklapper added a comment.Jan 25 2013, 11:35 PM

(In reply to comment #4)

We are going to support SSL on planet in a little while now. Actually we got
approval to buy a wildcard cert just for *.planet and this is being ordered
now.

Is there a corresponding RT ticket or such?

Dzahn added a comment.Jan 25 2013, 11:41 PM

yes. https://rt.wikimedia.org/Ticket/Display.html?id=3481

Dzahn added a comment.Mar 9 2013, 1:05 AM

resolved.

https://en.planet.wikimedia.org/

using a *.planet certificate

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL