crrodriguez

Can you test it now? it should work now AFAIK. ps: the underlying components on which this was built several years ago are a piece of shit.. extra time has to be allocated to get rid of it at some point in the future.. It keeps breaking incessantly as the universe moves on..

Fixed.. sorry for not noticing.. currently we are running without a system that notifies impending certificate expiration.. if it is any consolation, it happened to Apple, a multi billion dollar corporation few weeks ago and all the update services 's customers were locked out.

Fixed.

wiki online now.

Known issue, fix known . will be adressed soon.

I am looking into this, it is caused by change in configurations and webserver environment changes.

Server migration should start soon. expect minor annoyances

3 days, this is valid, if and only if - This soon to be replaced server does not crash, because if it does, the session information, which might be stored in volatile (RAM) storage is gone foreva (though Im seeing now IPB stores session info in database, dunnno to which extent though) -

works great in opera Mobile using android 2.3.x and the IPB Mobile theme.

Yeah, seeing that bug (in the CSS most likely) while using Chrome and Firefox

..And I am currently setting up the new webserver as well

Deploying IPv6 is in the TODO list, only thing stopping it is my lazyness :-D

Yeah, interesting however there is nothing we can do about it. When we deployed SSL in this server we tried to not use SNI (to avoid this special virtualhost for IE-winxp users) , however the non-SNI way requires one IP address per ssl-virtualhost and as you may already know, the world ran out of IPv4 allocation space a while ago, making our ISP reluctant to assign more than 1 IP address per server ... We can provide fallback only to cdburnerxp.se 's forums (noob IE-winXP users are somehow still around there :-D )

The browser you are using is likely miscompiled and lacks of SNI (Server Name Indication ) support http://en.wikipedia.org/wiki/Server_Name_Indication , which is used in this server for all SSL domains except forum.cdburnerxp.se , which is the default ssl host in case cdburnerxp users are running broken browsers like IE6/IE7 in windows XP which does not support this feature. All other browsers including Firefox, Chrome, Opera, etc should work on any OS version as well IE on Vista and later.

The database can take care of that by itself, however what needs to be defined is X in period of time and what other conditions to use.

I see in the database that there are > 1200 entries which have not been updated in more than a year... but though they are too old, Im not sure if that's enough criteria to delete them from the system.,

Yeah, that makes more sense. If any of you have hacking abilities, please send a source code patch ! , afaik floele is pretty busy at the moment, dunno if he has time to implement this. I only do *nix programming :-D

I have made some modifications now, the xml_rpc backend is not very reliable and breaks on every single update, can you try now ? I updated both the code and the underlying library ...

Fixed, nothing to do with SSL though :-)

That's exactly the way it is implemented already

Finally No Internet Explorer version supports HTTP Strict Transport Security, only Chrome and Firefox, so IE users wont benefit from it, the relevant HTTP header is ignored and does nothing :-( I hope someday MS fixes their stuff to behave sanely, experience tells me it is not going to happend :-P

That is expected, proper browsers "remember" that the domain "ketarin.org" (not subdomains) is to be accessed over SSL,but only if you have visited a part of the site that demands SSL (like the forum) currently for 6 months (unless you delete your browser cache) This is because your browser may send cookies over plain HTTP and break all application-side safe-guards.. :-) however cookies of this forum are currently being marked as "secure" hence no well behaving browser will send them in a plain text connection. Only the main domain is available over SSL for now, the wiki is not, but may be in the future.

Note that if you click "main site" in the forum menu, you will get front website over SSL, This is expected but not really intented, as a side effect of the rolling of http://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security ;-) The trick is done by your browser, once you enter the forum, a header is set telling you client "use ssl only for this domain", shouldnt harm, so I 'll leave it as is. :-D

Hi: Sysadmin here We have enabled SSL in the website, and it is mandatory for the forum but optional in the main site. This is intented to make the experience more secure, specially for forum user's passwords. Use this post to report any problem you have with SSL access. Cheers