[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#47823: Hardenize Guix website TLS/DNS
From: |
Julien Lepiller |
Subject: |
bug#47823: Hardenize Guix website TLS/DNS |
Date: |
Fri, 16 Apr 2021 20:10:11 -0400 |
User-agent: |
K-9 Mail for Android |
Le 16 avril 2021 12:15:25 GMT-04:00, Leo Famulari <leo@famulari.name> a écrit :
>On Fri, Apr 16, 2021 at 11:00:05AM +0000, bo0od wrote:
>> Scanning Guix website gave many missing security features which
>modern
>> security needs them to be available:
>>
>> * TLS and DNS:
>>
>> looking at:
>>
>> https://www.hardenize.com/report/guix.gnu.org/1618568751
>>
>> https://www.ssllabs.com/ssltest/analyze.html?d=guix.gnu.org
>
>Thanks!
>
>> - DNS: DNSSEC support missing (important)
>
>Hm, is it important? My impression is that it's an idea whose time has
>passed without significant adoption.
>
>But maybe we could enable it if the costs are not too great.
gnu.org does not have dnssec, so we'd need them to work on that first.