On Mon, 9 Jun 2008, Urs Beyerle wrote:

> Hi,
>
> www.scientificlinux.org has no official security certificate. This was (or 
> is?) not a real problem, but with firefox 3 (on SL5.2 beta) you get the 
> following "ugly" error message, if you go to www.scientificlinux.org for the 
> first time:

If we can have a certificate great.

If not, is it necessary for the whole site to be https only ?
The front page talks about login, so I can see that it may once have made 
sense not to have any http:// pages, but since the login feature has been 
turned off it isn't clear to me why at least the front page and the
information content is not available by http.

(https might make sense to ensure that we are not getting trojan'ed 
binaries, though I would have to think very carefully to confirm
whether it is in fact doing that.)

-- 
Dr. Andrew C. Aitchison		Computer Officer, DPMMS, Cambridge
[log in to unmask]	http://www.dpmms.cam.ac.uk/~werdna