On Wed, Jun 1, 2016 at 2:52 PM, Rob Lanphier <robla(a)wikimedia.org> wrote:
* T75953: RFC: MediaWiki HTTPS policy
I see that RFC hasn't had any interesting edits since December 2014. Since
then I believe things have changed a fair bit, for example the move to
HTTPS for all traffic in 2015,[1] so I wonder how much of the RFC is still
accurate/relevant. Perhaps we'd rather remove the brittle parts of the
existing code instead of adding even more configurability that we won't be
using.
[1]:
https://blog.wikimedia.org/2015/06/12/securing-wikimedia-sites-with-https/
--
Brad Jorsch (Anomie)
Senior Software Engineer
Wikimedia Foundation