You are viewing a plain text version of this content. The canonical link for it is here.
Posted to infrastructure-issues@apache.org by "Manuel Carrasco Moñino (JIRA)" <ji...@apache.org> on 2012/05/03 13:58:51 UTC
[jira] [Created] (INFRA-4740) SSL certificate for webserver
Manuel Carrasco Moñino created INFRA-4740:
---------------------------------------------
Summary: SSL certificate for webserver
Key: INFRA-4740
URL: https://issues.apache.org/jira/browse/INFRA-4740
Project: Infrastructure
Issue Type: Wish
Security Level: public (Regular issues)
Reporter: Manuel Carrasco Moñino
Priority: Minor
Hello
Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
My question is if there is a way so as infra provides us with a valid certificate for the server.
Thanks
- Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "#asfinfra IRC Bot (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13271393#comment-13271393 ]
#asfinfra IRC Bot commented on INFRA-4740:
------------------------------------------
<danielsh> closing as requested
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "Manuel Carrasco Moñino (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13267674#comment-13267674 ]
Manuel Carrasco Moñino commented on INFRA-4740:
-----------------------------------------------
Yes it is to access the app, we do not use any asf account.
Because Hupa is an email-client it is necesary that the user provides a valid user/password in the imap server.
For demoing we have Hupa configured to use gmail imap servers via ssl, so the users who test the app have to provide a valid imap enabled gmail account, this is the reason why we have Hupa configured to listen in a secure port.
The main problem is that browser refuses to use an untrusted certificate.
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Closed] (INFRA-4740) SSL certificate for webserver
Posted by "#asfinfra IRC Bot (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
#asfinfra IRC Bot closed INFRA-4740.
------------------------------------
Resolution: Not A Problem
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "Manuel Carrasco Moñino (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13271367#comment-13271367 ]
Manuel Carrasco Moñino commented on INFRA-4740:
-----------------------------------------------
I've turned off the gmail instance and keep the demo one, so we do not need the certificate anymore since the demo instance has a public username/password.
BTW: the demo instance does not send nor receive messages, it uses a set of mock messages and a stub smtp implementation.
Please close the issue.
Thanks
- Manolo
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "Manuel Carrasco Moñino (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13271332#comment-13271332 ]
Manuel Carrasco Moñino commented on INFRA-4740:
-----------------------------------------------
Sorry I did not read the list last Sunday,
Let me know what the options are and why do you consider Hupa demo dangerous running in the asf infrastructure.
Thanks
- Manolo
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "#asfinfra IRC Bot (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13267377#comment-13267377 ]
#asfinfra IRC Bot commented on INFRA-4740:
------------------------------------------
<danielsh> the "user password" is a password to the app, right? not the svn password or anything
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (INFRA-4740) SSL certificate for webserver
Posted by "#asfinfra IRC Bot (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/INFRA-4740?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13271139#comment-13271139 ]
#asfinfra IRC Bot commented on INFRA-4740:
------------------------------------------
<danielsh> Given the issues discussed on-list and the lack of response to them, I'm not comfortable letting you run services under the same certificate infra services use. I'll start a thread about other options.
> SSL certificate for webserver
> -----------------------------
>
> Key: INFRA-4740
> URL: https://issues.apache.org/jira/browse/INFRA-4740
> Project: Infrastructure
> Issue Type: Wish
> Security Level: public(Regular issues)
> Reporter: Manuel Carrasco Moñino
> Priority: Minor
>
> Hello
> Our jail server (james.jails.apache.org) is running a demo instance of Hupa. Because it retrieves user password, we have activated https using a self-signed certificate.
> My question is if there is a way so as infra provides us with a valid certificate for the server.
> Thanks
> - Manolo
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira