Defect #29202

[wishlist] improve HTTPS security of redmine.org

Added by Simon Deziel over 1 year ago. Updated over 1 year ago.

Status:ClosedStart date:
Priority:NormalDue date:
Assignee:Jean-Philippe Lang% Done:

0%

Category:Website (redmine.org)
Target version:-
Resolution:Duplicate Affected version:

Description

https://redmine.org TLS config is suboptimal security-wise as attested by the F grade from Qualys SSL tester (https://www.ssllabs.com/ssltest/analyze.html?d=redmine.org). It should be relatively easy and quick to tune it to get to at least C grade.

History

#2 Updated by Holger Just over 1 year ago

  • Status changed from New to Closed
  • Resolution set to Duplicate

#3 Updated by Simon Deziel over 1 year ago

@Holdger, sorry for the duplicate. Would you mind pointing me to the duplicated ticket? I couldn't find it and I'd like to track it, thanks.

#4 Updated by Go MAEDA over 1 year ago

Simon Deziel wrote:

@Holdger, sorry for the duplicate. Would you mind pointing me to the duplicated ticket? I couldn't find it and I'd like to track it, thanks.

It is #19160. You can see it in "Related issues" section.

#5 Updated by Simon Deziel over 1 year ago

I do not see any "Related issues" section and I cannot access #19160 despite being logged in. Maybe the bug is private.

Also available in: Atom PDF