It seems that thanks to the hard work of the Fedora Infrastructure team we can soon enforce HTTPS for all of the Fedora Project – at least of all hosts within *.fedoraproject.org. To make sure that this does not awfully break everything it would be awesome if you could test whether we need to fix something for you for this. If you use chromium or chrome, you can easily enforce HTTPS for fedoraproject.org and its subdomains:
- Go to the net internals settings at chrome:://net-internals#hsts
- Put fedoraproject.org in the input field for domain
- Check the Include subdomains for STS checkbox
- Click on the Add button
Afterwards you should notice that all requests to any fedoraproject.org URL should got to HTTPS by default. If you notice any problems with yes, please not this in the Fedora Infrastructure ticket #2888. Let me know if you figure out how to do this in Firefox and I will add the instructions here as well.
1 thought on “Encrypt all the Fedora Project”
Maybe in Firefox we can use https everywere https://addons.mozilla.org/it/firefox/addon/https-everywhere/ that is also in the default Fedora repository.