Tiene razón en lo del *.fi-ware.eu pero no afecta a la calidad de la seguridad que da https así que lo miraré más adelante cuando tengamos el resto de cosas importantes terminadas, ahora mismo estamos seguros. On 8 June 2011 12:08, Juanjo Hierro <jhierro at tid.es> wrote: > > Para vuestra consideración. No sé si tiene que ver con los tempas de > securización que habíamos identificado como pendientes. > > Saludos, > > -- Juanjo > > -------- Original Message -------- Subject: digital sertificate for > fi-ware.org while the site is forge.fi-ware.org Date: Wed, 8 Jun 2011 > 10:27:46 +0200 From: Moltchanov Boris <boris.moltchanov at telecomitalia.it><boris.moltchanov at telecomitalia.it> To: > JUAN JOSE HIERRO SUREDA <jhierro at tid.es> <jhierro at tid.es> > > Dear Juanjo, > > > > Sorry to disturb you. I’ve noticed that the ssl connection of fi-ware > authentication (the rest is still unprotected http) is using the x509 cert. > issued for fi-ware.org dname, while the web name is forge.fi-ware.org. > Therefore the browsers will always alarm users at the first fi-ware access > and forse users to accept “incorrect” situation for not-allarming future > use. > > > > Probably it would be better to issue a dns certificate for fi-ware.orgdomain, then all *.fi-ware.ore names are “covered” or issue the cert. for > forge.fi-ware.org (is usage of forge word is unavoidable). In the last > case we could extend then ssl to entire web site and not only for > authentication. > > > > It just a comment, I know that you’re quite busy therefore decide yourself > to consider it by yourself, to discharge this message or forward it to the > security/forge team. > > > > Best Regards, > > Boris > Questo messaggio e i suoi allegati sono indirizzati esclusivamente alle > persone indicate. La diffusione, copia o qualsiasi altra azione derivante > dalla conoscenza di queste informazioni sono rigorosamente vietate. Qualora > abbiate ricevuto questo documento per errore siete cortesemente pregati di > darne immediata comunicazione al mittente e di provvedere alla sua > distruzione, Grazie. > > *This e-mail and any attachments** is **confidential and may contain > privileged information intended for the addressee(s) only. Dissemination, > copying, printing or use by anybody else is unauthorised. If you are not the > intended recipient, please delete this message and any attachments and > advise the sender by return e-mail, Thanks.* > *[image: rispetta l'ambiente]Rispetta l'ambiente. Non stampare questa mail > se non è necessario.* > ------------------------------ > Este mensaje se dirige exclusivamente a su destinatario. Puede consultar > nuestra política de envío y recepción de correo electrónico en el enlace > situado más abajo. > This message is intended exclusively for its addressee. We only send and > receive email on the basis of the terms set out at. > http://www.tid.es/ES/PAGINAS/disclaimer.aspx > > _______________________________________________ > Fiware-support mailing list > Fiware-support at lists.fi-ware.eu > http://lists.fi-ware.eu/listinfo/fiware-support > > -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://lists.fiware.org/private/fiware-support/attachments/20110610/17f68595/attachment.html> -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: image/jpeg Size: 677 bytes Desc: not available URL: <https://lists.fiware.org/private/fiware-support/attachments/20110610/17f68595/attachment.jpe>
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy