[MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

classic Classic list List threaded Threaded
5 messages Options
Reply | Threaded
Open this post in threaded view
|

[MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

MacPorts
#56010: Default download links for MacPorts installer requires HTTPS
---------------------+-----------------
 Reporter:  mojca    |      Owner:
     Type:  defect   |     Status:  new
 Priority:  Normal   |  Milestone:
Component:  website  |    Version:
 Keywords:           |       Port:
---------------------+-----------------
 When users go to https://www.macports.org/install.php#installing and try
 to download the dmg for installation on an older machine (say, 10.5/ppc),
 the download link won't work because it requires HTTPS. At least for older
 systems that's somewhat suboptimal because users don't even know that
 there's an alternative download location.

--
Ticket URL: <https://trac.macports.org/ticket/56010>
MacPorts <https://www.macports.org/>
Ports system for macOS
Reply | Threaded
Open this post in threaded view
|

Re: [MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

MacPorts
#56010: Default download links for MacPorts installer requires HTTPS
----------------------+-----------------
  Reporter:  mojca    |      Owner:
      Type:  defect   |     Status:  new
  Priority:  Normal   |  Milestone:
 Component:  website  |    Version:
Resolution:           |   Keywords:
      Port:           |
----------------------+-----------------

Comment (by ryandesign):

 If the user is able to reach https://www.macports.org from that old
 machine (using a newer browser like TenFourFox), they should also be able
 to reach https://distfiles.macports.org. They're hosted on the same CDN,
 both with Let's Encrypt SSL certificates.

 I guess the problem is that our download links have once again switched
 from using our distfiles server to using GitHub. Looks like that happened
 in [7a1bca656b1409bb2b04b3c574bb2e5a2ef850ef/macports-www] when MacPorts
 2.4.2 was released, because the files were uploaded to GitHub first, and I
 added them to the distfiles server later. I would prefer to use our
 distfiles CDN links for the web site anyway so let's change that back.

--
Ticket URL: <https://trac.macports.org/ticket/56010#comment:1>
MacPorts <https://www.macports.org/>
Ports system for macOS
Reply | Threaded
Open this post in threaded view
|

Re: [MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

MacPorts
In reply to this post by MacPorts
#56010: Default download links for MacPorts installer requires HTTPS
----------------------+-----------------
  Reporter:  mojca    |      Owner:
      Type:  defect   |     Status:  new
  Priority:  Normal   |  Milestone:
 Component:  website  |    Version:
Resolution:           |   Keywords:
      Port:           |
----------------------+-----------------

Comment (by mojca):

 Downloading from distfiles works of course. I thought I was using http
 protocol, but I need to double-check. I was using Safari in any case.

--
Ticket URL: <https://trac.macports.org/ticket/56010#comment:3>
MacPorts <https://www.macports.org/>
Ports system for macOS
Reply | Threaded
Open this post in threaded view
|

Re: [MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

MacPorts
In reply to this post by MacPorts
#56010: Default download links for MacPorts installer requires HTTPS
----------------------+-----------------
  Reporter:  mojca    |      Owner:
      Type:  defect   |     Status:  new
  Priority:  Normal   |  Milestone:
 Component:  website  |    Version:
Resolution:           |   Keywords:
      Port:           |
----------------------+-----------------

Comment (by ryandesign):

 www.macports.org is configured to require https traffic.
 distfiles.macports.org and packages.macports.org aren't, so that old
 systems can connect to them.

 Tested today, Safari on Leopard can connect to our web site and other
 servers. Safari on Tiger presents an invalid certificate message, but it
 you bypass it, it works. It didn't used to be that way; you used to need
 TenFourTox on Tiger at least and maybe on Leopard, I don't remember. I
 think the Let's Encrypt certificates we're using now work better on older
 systems than the GlobalSign certificate we used to use.

--
Ticket URL: <https://trac.macports.org/ticket/56010#comment:4>
MacPorts <https://www.macports.org/>
Ports system for macOS
Reply | Threaded
Open this post in threaded view
|

Re: [MacPorts] #56010: Default download links for MacPorts installer requires HTTPS

MacPorts
In reply to this post by MacPorts
#56010: Default download links for MacPorts installer requires HTTPS
----------------------+------------------------
  Reporter:  mojca    |      Owner:  ryandesign
      Type:  defect   |     Status:  closed
  Priority:  Normal   |  Milestone:
 Component:  website  |    Version:
Resolution:  fixed    |   Keywords:
      Port:           |
----------------------+------------------------
Changes (by ryandesign):

 * owner:  (none) => ryandesign
 * status:  new => closed
 * resolution:   => fixed


Comment:

 In [changeset:"05dd2ef68f1a07b13e4bc94f0ad1b533b611bbad/macports-www"
 05dd2ef68f1a07b13e4bc94f0ad1b533b611bbad/macports-www]:
 {{{
 #!ConfigurableCommitTicketReference repository="macports-www"
 revision="05dd2ef68f1a07b13e4bc94f0ad1b533b611bbad"
 Switch download links back to our distfiles server

 Closes: https://trac.macports.org/ticket/56010
 }}}

--
Ticket URL: <https://trac.macports.org/ticket/56010#comment:5>
MacPorts <https://www.macports.org/>
Ports system for macOS