Try visiting https://en.m.wiktionary.org/wiki/Wiktionary:Main_Page - you'll get warning that host does not match certificate. The cert is issued to Wikipedia.
Version: unspecified
Severity: normal
MaxSem | |
Feb 29 2012, 9:17 AM |
F8836: cert_voyage.png | |
Nov 22 2014, 12:10 AM |
F8835: firefox-cert-err.png | |
Nov 22 2014, 12:10 AM |
F8834: Screenshot_2013-02-08-09-17-43-526552475.png | |
Nov 22 2014, 12:10 AM |
Try visiting https://en.m.wiktionary.org/wiki/Wiktionary:Main_Page - you'll get warning that host does not match certificate. The cert is issued to Wikipedia.
Version: unspecified
Severity: normal
Status | Subtype | Assigned | Task | ||
---|---|---|---|---|---|
Declined | None | T37760 [Wiktionary] Requests are made via http, not https | |||
Resolved | None | T37215 Mobile redirect strips https | |||
Resolved | None | T43184 Wikivoyage migration | |||
Resolved | None | T36788 Non-Wikipedia mobile domains use Wikipedia's SSL certificate |
lambdav wrote:
(In reply to comment #1)
RT #2541
This site has private access only.
How many years to solve a Critical problem with High priority ? No one is assigned to this bug, and no solution is proposed.
On a related note, if you go to .com addresses (like https://en.wikipedia.com/) using HTTPS protocol, before you get forwarded to the .org address, you will get an error message regarding the SSL key. That is because the .com addresses use the SSL key that is for *.wikipedia.org
(In reply to comment #6)
(In reply to comment #1)
RT #2541
This site has private access only.
How many years to solve a Critical problem with High priority ? No one is
assigned to this bug, and no solution is proposed.
Well, it's obviously not a critical problem with high priority, then. If it were, it would have been fixed already, right? :-)
I'm gonna bump the priority down a bit, as the mobile sites not properly handling SSL isn't that critical, as I read it. It used to be that the mobile site was completely read-only, but maybe that's changed? I'm not sure what the critical or high priority parts would be here.
I think you're really asking for a status update from RT #2541. I'll CC a few a people on this bug who may be able to help with that.
(In reply to comment #8)
On a related note, if you go to .com addresses (like https://en.wikipedia.com/)
using HTTPS protocol, before you get forwarded to the .org address, you will
get an error message regarding the SSL key. That is because the .com addresses
use the SSL key that is for *.wikipedia.org
I split this out to bug 40998.
If the good certificates won't be added, is there a way to redirect users, that used "normal" website in https and click on "Mobile view" link, to mobile website using http ?
...or remove the "Mobile view" link altogether when in https. Seriously - this really should be dealt with, even if we don't get good certificates.
DavidL: "Critical" means "Crashes, loss of data" as per http://www.mediawiki.org/wiki/Bugzilla/Fields#Severity . That's not the case here.
With regard to the problems and the current status of this:
The problem is that mobile is served by Varnish, whereas the main projects
are still on Squid, and NGINX (HTTPS) will need to distinguish between the
two in this new setup.
As for the current status, RobHa "emailed digicert to attempt to get ALL our domains as SANS on a single root level wikimedia.org certificate."
(In reply to comment #13)
The problem is that mobile is served by Varnish, whereas the main projects
are still on Squid, and NGINX (HTTPS) will need to distinguish between the
two in this new setup.As for the current status, RobHa "emailed digicert to attempt to get ALL our
domains as SANS on a single root level wikimedia.org certificate."
This was posted over a month ago. Any updates? Just had a user in #wikimedia-tech asking about https://uk.m.wikinews.org using a wikipedia cert.
(In reply to comment #15)
This was posted over a month ago. Any updates?
The RT ticket's had very recent progress. I wouldn't expect any further news at least until after the weekend.
Just in case it's related: I just logged in to English Wikipedia from my mobile device and a dialog showed up saying that wikivoyage.org certificate is untrusted.
mediawiki.org was accidentally left out of the unified certificate. We'll be ordering a new one soon.
Note that m.wikipedia.org was also accidentally left off, so the unified cert is being rolled back.
According to RobH "This was done and pushed out awhile ago, all done!"
Closing as FIXED.