[GH-ISSUE #39] encourage SSL usage on the UI #38

New issue

Closed

opened 2026-02-26 09:35:07 +03:00 by kerem · 3 comments

kerem commented 2026-02-26 09:35:07 +03:00

Owner

Copy link

Originally created by @ThomasWaldmann on GitHub (Oct 22, 2013).
Original GitHub issue: https://github.com/nsupdate-info/nsupdate.info/issues/39

ThomasWaldmann wrote:
if someone visits the service via http, encourage using it via https - without enforcing it.

Originally created by @ThomasWaldmann on GitHub (Oct 22, 2013). Original GitHub issue: https://github.com/nsupdate-info/nsupdate.info/issues/39 ThomasWaldmann wrote: if someone visits the service via http, encourage using it via https - without enforcing it.

kerem added the

enhancement

security

labels 2026-02-26 09:35:07 +03:00

kerem referenced this issue 2026-02-26 09:35:07 +03:00

[GH-ISSUE #38] anti-abuse: clients updating too often with nochg #39

kerem closed this issue 2026-02-26 09:35:07 +03:00

kerem commented 2026-02-26 09:35:08 +03:00

Author

Owner

Copy link

@ThomasWaldmann commented on GitHub (Oct 22, 2013):

Samuirai wrote:
not enforcing is insecure. MITM attacker can block https and every user would use the fallback plain http. Either force https or no ssl at all.

<!-- gh-comment-id:26768400 --> @ThomasWaldmann commented on GitHub (Oct 22, 2013): Samuirai wrote: not enforcing is insecure. MITM attacker can block https and every user would use the fallback plain http. Either force https or no ssl at all.

kerem commented 2026-02-26 09:35:08 +03:00

Author

Owner

Copy link

@ThomasWaldmann commented on GitHub (Oct 22, 2013):

ThomasWaldmann wrote:
samuirai: ok, so that basically means that login and all logged-in usage of the site has to be https only until the user logs out again.

so the http site (if any) would only show general information that does not require a login/session.

<!-- gh-comment-id:26768401 --> @ThomasWaldmann commented on GitHub (Oct 22, 2013): ThomasWaldmann wrote: samuirai: ok, so that basically means that login and all logged-in usage of the site has to be https only until the user logs out again. so the http site (if any) would only show general information that does not require a login/session.

kerem commented 2026-02-26 09:35:08 +03:00

Author

Owner

Copy link

@ThomasWaldmann commented on GitHub (Nov 2, 2013):

fixed by b45ae25b0a

<!-- gh-comment-id:27610350 --> @ThomasWaldmann commented on GitHub (Nov 2, 2013): fixed by b45ae25b0a46fb7f45b106a8cb18b718daa15644

kerem referenced this issue 2026-02-26 09:35:10 +03:00

[GH-ISSUE #45] implement more dyndns2 result codes #43

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

0.13-maint

rel0.10

rel0.9

rel0.8

0.13.0

0.12.0

v0.11.0

v0.10.0

v0.9.1

v0.9.0

v0.8.0

v0.7.0

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.0b0

djangodash2013

Labels

Clear labels   

bug

  

bug

  

duplicate

  

easy

  

easy

  

enhancement

  

enhancement

  

invalid

  

needs help

  

pull-request

Mirrored from GitHub Pull Request

  

scalability

  

security

  

task

  

urgent

  

wontfix

No labels

bug

bug

duplicate

easy

easy

enhancement

enhancement

invalid

needs help

pull-request

scalability

security

task

urgent

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/nsupdate.info-nsupdate-info#38

No description provided.