Bug 53855
Summary: | Insecure login to www.redhat.com/bugzilla using Netscape on RH Linux 7.1 | ||
---|---|---|---|
Product: | [Community] Bugzilla | Reporter: | Mark Harig <maharig> |
Component: | Bugzilla General | Assignee: | David Lawrence <dkl> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | David Lawrence <dkl> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 2.8 | CC: | kmaraas |
Target Milestone: | --- | Keywords: | Security |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.redhat.com/bugzilla/login.cgi | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2003-04-02 23:36:06 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Mark Harig
2001-09-19 23:17:27 UTC
I need to have them remove that redirect from the main web site as it causes confusion. But it is not necessarily a bug. If you go directly to http://bugzilla.redhat.com/bugzilla you will still get the error about passing insecure information since the channel is not encrypted. You can connect to bugzilla securely by using the following url instead https://bugzilla.redhat.com/bugzilla This should be more secure. I will speak with the web guys to make sure this is the default or the redirect is removed altogether. Still not using https as the default, right? >
> Still not using https as the default, right?
>
It appears to be using https as the default for me now when I click on the "Red
Hat Network" link in Mozilla (after loading the redhat.com web page).
As far as I can tell, this bug has been fixed.
Should be the default. If you find an entry point for logging in that doesnt use https please reopen this and let me know. |