Handle https:// requests #37
Comments
|
We definitely can support https (I had it working on nginx) I think we should talk more about the ability for this to actually be useful. For example it won't add much security to the default non-internet attached devices as a man in the middle could still pretty easily pick out who was sharing... This might not be to useful but it could be an interesting proof of concept. |
|
I've tried this on Android. As expected, the problem is the certificate. |
|
Yes that is the expected behaviour of a self signed certificate. If you were to get a signed certificate it would probably work fine. I think that since the switch to lighttpd we can say we "officially" support https and thus this can be closed. |
|
The valid signed certificate won't help you much, because the URL won't match. Sure we have lighttpd running but still not SSL enabled. Cale Black notifications@github.com schrieb:
Diese Nachricht wurde von meinem Android-Mobiltelefon mit K-9 Mail gesendet. |
|
The initial connection initiated by the browser is already a SSL connection. |
|
The ssl security is done before any other interaction with the server (including redirects). Also if a bigger/known website has an invalid ssl cert it will trip up some virus scanners as well. |
|
I think over all this are enough reasons for not following this request anymore. |
Currently not supported.
Can we support it somehow?
Possible solutions:
What happens with certifacates and so on?
We have to discuss this.
http://forum.daviddarts.com/read.php?2,5986,6864#msg-6864
The text was updated successfully, but these errors were encountered: