Plyd wrote: Use https://secure.wikimedia.org/wikipedia/en/wiki/Main_Page --vvv

K. Peachey wrote: As it says on the insecure login: http://fr.wikipedia.org/w/index.php?title=Sp%C3%A9cial:Connexion&return… "Pour plus de sécurité, il est possible de se connecter via notre serveur sécurisé (aide)." With the embedded link: https://secure.wikimedia.org/wikipedia/fr/wiki/Special:Userlogin

On Mon, Aug 3, 2009 at 1:56 PM, Neil Harris<usenet(a)tonal.clara.co.uk> wrote: See https://bugzilla.wikimedia.org/show_bug.cgi?id=5440 -Chad

On Mon, Aug 3, 2009 at 2:16 PM, Brion Vibber <brion(a)wikimedia.org> wrote: I'm curious...what will this cleaner interface look like? Will we be able to connect securely through https://en.wikipedia.org/? -- Remember the dot http://en.wikipedia.org/wiki/User:Remember_the_dot

On Tue, Aug 4, 2009 at 7:47 PM, Brion Vibber<brion(a)wikimedia.org> wrote: A useful data point is that GreenReaper@Wikifur has switched to using protocol relative URLs rather than absolutes (i.e. "//host.domain.com/foo/bar") and had good luck with it. This is an additional data-point beyond the testing I did with en.wp last year. (Last year while doing some ipv6 testing I also tested protocol relatives and determined that all the clients with JS support were unharmed by protocol relatives). Ironically— the existence of secure.wikimedia.org with insecure images is the only obstruction I see to switching images on the production sites to protocol relatives in order to confirm client compatibility. (For those following at home: If Wikimedia can use protocol relatives as a global replacement for absolutes to its own domains we can avoid inadvertent secure/insecure mode switching and leaks without having to have two copies of the article cache data and without kludgy on-the-fly rewriting)