RT #2541

• Bug 35096 has been marked as a duplicate of this bug. ***

pfhayes wrote:

*** Bug 34833 has been marked as a duplicate of this bug. ***

• Bug 37024 has been marked as a duplicate of this bug. ***

lambdav wrote:

How many months to resolve a Critical bug with High priority ?

lambdav wrote:

(In reply to comment #1)

RT #2541

This site has private access only.

How many years to solve a Critical problem with High priority ? No one is assigned to this bug, and no solution is proposed.

headerfuturetree wrote:

content hidden as private in Bugzilla

On a related note, if you go to .com addresses (like https://en.wikipedia.com/) using HTTPS protocol, before you get forwarded to the .org address, you will get an error message regarding the SSL key. That is because the .com addresses use the SSL key that is for *.wikipedia.org

(In reply to comment #6)

(In reply to comment #1)

RT #2541

This site has private access only.

How many years to solve a Critical problem with High priority ? No one is
assigned to this bug, and no solution is proposed.

Well, it's obviously not a critical problem with high priority, then. If it were, it would have been fixed already, right? :-)

I'm gonna bump the priority down a bit, as the mobile sites not properly handling SSL isn't that critical, as I read it. It used to be that the mobile site was completely read-only, but maybe that's changed? I'm not sure what the critical or high priority parts would be here.

I think you're really asking for a status update from RT #2541. I'll CC a few a people on this bug who may be able to help with that.

(In reply to comment #8)

On a related note, if you go to .com addresses (like https://en.wikipedia.com/)
using HTTPS protocol, before you get forwarded to the .org address, you will
get an error message regarding the SSL key. That is because the .com addresses
use the SSL key that is for *.wikipedia.org

I split this out to bug 40998.

If the good certificates won't be added, is there a way to redirect users, that used "normal" website in https and click on "Mobile view" link, to mobile website using http ?

...or remove the "Mobile view" link altogether when in https. Seriously - this really should be dealt with, even if we don't get good certificates.

lambdav wrote:

Critical problems do not seems to be high priority for wikimedia...

DavidL: "Critical" means "Crashes, loss of data" as per http://www.mediawiki.org/wiki/Bugzilla/Fields#Severity . That's not the case here.

With regard to the problems and the current status of this:

The problem is that mobile is served by Varnish, whereas the main projects
are still on Squid, and NGINX (HTTPS) will need to distinguish between the
two in this new setup.

As for the current status, RobHa "emailed digicert to attempt to get ALL our domains as SANS on a single root level wikimedia.org certificate."

Created attachment 11757
ugly error message in Firefox android

Attached:

(In reply to comment #13)

The problem is that mobile is served by Varnish, whereas the main projects
are still on Squid, and NGINX (HTTPS) will need to distinguish between the
two in this new setup.

As for the current status, RobHa "emailed digicert to attempt to get ALL our
domains as SANS on a single root level wikimedia.org certificate."

This was posted over a month ago. Any updates? Just had a user in #wikimedia-tech asking about https://uk.m.wikinews.org using a wikipedia cert.

(In reply to comment #15)

This was posted over a month ago. Any updates?

The RT ticket's had very recent progress. I wouldn't expect any further news at least until after the weekend.

inbox wrote:

*** Bug 37650 has been marked as a duplicate of this bug. ***

inbox wrote:

*** Bug 38412 has been marked as a duplicate of this bug. ***

Just in case it's related: I just logged in to English Wikipedia from my mobile device and a dialog showed up saying that wikivoyage.org certificate is untrusted.

• Bug 46037 has been marked as a duplicate of this bug. ***

Created attachment 11917
Errors on m.wikivoyage in Firefox

Attached:

Created attachment 11918
Windows Phone 7.5 error screen on wikivoyage

Attached:

Done for all except for mediawiki.org

mediawiki.org was accidentally left out of the unified certificate. We'll be ordering a new one soon.

Note that m.wikipedia.org was also accidentally left off, so the unified cert is being rolled back.

According to RobH "This was done and pushed out awhile ago, all done!"

Closing as FIXED.