bug#47823: Hardenize Guix website TLS/DNS

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#47823: Hardenize Guix website TLS/DNS

From:	Julien Lepiller
Subject:	bug#47823: Hardenize Guix website TLS/DNS
Date:	Fri, 16 Apr 2021 20:10:11 -0400
User-agent:	K-9 Mail for Android

Le 16 avril 2021 12:15:25 GMT-04:00, Leo Famulari <leo@famulari.name> a écrit :
>On Fri, Apr 16, 2021 at 11:00:05AM +0000, bo0od wrote:
>> Scanning Guix website gave many missing security features which
>modern
>> security needs them to be available:
>> 
>> * TLS and DNS:
>> 
>> looking at:
>> 
>> https://www.hardenize.com/report/guix.gnu.org/1618568751
>> 
>> https://www.ssllabs.com/ssltest/analyze.html?d=guix.gnu.org
>
>Thanks!
>
>> - DNS: DNSSEC support missing (important)
>
>Hm, is it important? My impression is that it's an idea whose time has
>passed without significant adoption.
>
>But maybe we could enable it if the costs are not too great.

gnu.org does not have dnssec, so we'd need them to work on that first.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#47823: Hardenize Guix website TLS/DNS, bo0od, 2021/04/16
- bug#47823: Hardenize Guix website TLS/DNS, Leo Famulari, 2021/04/16
  - bug#47823: Hardenize Guix website TLS/DNS, Dr. Arne Babenhauserheide, 2021/04/16
  - bug#47823: Hardenize Guix website TLS/DNS, Julien Lepiller <=

Prev by Date: bug#31719: Chains of dependencies getting longer
Next by Date: bug#47808: guile-git-0.5.0.drv build failed
Previous by thread: bug#47823: Hardenize Guix website TLS/DNS
Next by thread: bug#47301: (guix profiles) is not re-exported by (guix)
Index(es):
- Date
- Thread