www-infrastructure-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "William A. Rowe, Jr. (JIRA)" <j...@apache.org>
Subject [jira] Created: (INFRA-1737) TLS/SSL access to https://www.apache.org/
Date Thu, 25 Sep 2008 01:37:44 GMT
TLS/SSL access to https://www.apache.org/

                 Key: INFRA-1737
                 URL: https://issues.apache.org/jira/browse/INFRA-1737
             Project: Infrastructure
          Issue Type: Wish
      Security Level: public (Regular issues)
          Components: HTTP Server, Infra Wishlist
            Reporter: William A. Rowe, Jr.

Right now, certain artifacts, especially ../KEYS and ../package.asc or .../package.md5
should be able to trust that they have reached www.apache.org (server authentication)
and are not modified in transit (TLS/SSL crypto).

Which leaves us looking for a https:// portal to /dist/, especially.  Other considerations
include the sponsorship and licensing pages where the reader wants additional assurance
that the information they receive (send $100k US to ...) are authentic.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message