From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 109552 invoked by alias); 24 Apr 2016 17:18:32 -0000 Mailing-List: contact cygwin-help@cygwin.com; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner@cygwin.com Mail-Followup-To: cygwin@cygwin.com Received: (qmail 109539 invoked by uid 89); 24 Apr 2016 17:18:31 -0000 Authentication-Results: sourceware.org; auth=none X-Virus-Found: No X-Spam-SWARE-Status: No, score=2.7 required=5.0 tests=AWL,BAYES_40,KAM_INFOUSMEBIZ,RCVD_IN_DNSWL_NONE,SPF_HELO_PASS,SPF_PASS autolearn=no version=3.3.2 spammy=H*F:D*me, H*M:namprd03, Hx-exchange-antispam-report-cfa-test:6040130, Hx-exchange-antispam-report-cfa-test:6043046 X-HELO: na01-by2-obe.outbound.protection.outlook.com Received: from mail-by2on0109.outbound.protection.outlook.com (HELO na01-by2-obe.outbound.protection.outlook.com) (207.46.100.109) by sourceware.org (qpsmtpd/0.93/v0.84-503-g423c35a) with (AES256-SHA256 encrypted) ESMTPS; Sun, 24 Apr 2016 17:18:21 +0000 Received: from BL2PR03MB228.namprd03.prod.outlook.com (10.255.231.21) by BL2PR03MB225.namprd03.prod.outlook.com (10.255.231.12) with Microsoft SMTP Server (TLS) id 15.1.466.19; Sun, 24 Apr 2016 17:18:18 +0000 Received: from BL2PR03MB228.namprd03.prod.outlook.com ([169.254.3.119]) by BL2PR03MB228.namprd03.prod.outlook.com ([169.254.3.119]) with mapi id 15.01.0466.023; Sun, 24 Apr 2016 17:18:18 +0000 From: Brian Clifton To: "cygwin@cygwin.com" Subject: Proposed patch for web site: update most links to HTTPS Date: Mon, 25 Apr 2016 00:05:00 -0000 Message-ID: authentication-results: cygwin.com; dkim=none (message not signed) header.d=none;cygwin.com; dmarc=none action=none header.from=clifton.me; x-ms-office365-filtering-correlation-id: 1dcd4ffa-43e9-4c8b-b4b0-08d36c646e1a x-microsoft-exchange-diagnostics: 1;BL2PR03MB225;5:xC9oDaMSHic+CNayQ4rbQhqOqPWV8iCNTqATfOD1kRTUSf9TI4BUHbdDoAF67LbUkCu8FOmVE3xPx94zZfcxi97cjoY+dM3u2FpPx42keJ0fJNBROZnWEPmpu/1e9qecTjVLduqaUf48QB+24Dw0n5ahId3pNWAWX0HRJXKEV/iak1zOQl8S7JAJD1Cr8Ane;24:yis3H6RIgNdGk7NeybG7mQpIWmEZual2Eb3ovRBGpTPrmoh4bO2+fHzz5aOpOkjEqYgMnn+foY0PWGDYD1hRka2iGz3de3fuo6gesmvJp/I=;7:35aprmv86BL5qw8/ZHfnWJyU7uw6PgCQiEFFLVDowAoSfXWclV3Zf7nLagEzhNWUhgHtDnsIlcSnv+h49PwM3WTyXLcRI+HoGUtEY6Z1TijlD2MJ800f3dgyxoqp6pxoa9y4YA4Ihlc3UHKXEpqvWGBisI0fo5Jy5j79rqZIRxBNP2+eHEwVtasPSITqMrpyY4SCHd7C/kxXXt3H6HuGFV94Dsl24mZ9ukcGmzAHPqI= x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BL2PR03MB225; x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-exchange-antispam-report-cfa-test: BCL:0;PCL:0;RULEID:(9101521062)(6040130)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001)(6041072)(6043046);SRVR:BL2PR03MB225;BCL:0;PCL:0;RULEID:;SRVR:BL2PR03MB225; x-forefront-prvs: 09222B39F5 x-forefront-antispam-report: SFV:NSPM;SFS:(10019020)(6009001)(15975445007)(19580405001)(1220700001)(107886002)(3846002)(87936001)(6116002)(76576001)(50986999)(54356999)(102836003)(15650500001)(1730700002)(586003)(3660700001)(33656002)(189998001)(9686002)(19580395003)(10400500002)(11100500001)(81166005)(450100001)(2351001)(86362001)(122556002)(5640700001)(74316001)(5003600100002)(99286002)(229853001)(3280700002)(2906002)(5008740100001)(74482002)(92566002)(2900100001)(66066001)(2501003)(575784001)(5002640100001)(1096002)(473944003);DIR:OUT;SFP:1102;SCL:1;SRVR:BL2PR03MB225;H:BL2PR03MB228.namprd03.prod.outlook.com;FPR:;SPF:None;MLV:sfv;LANG:en; spamdiagnosticoutput: 1:23 spamdiagnosticmetadata: NSPM Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-OriginatorOrg: clifton.me X-MS-Exchange-CrossTenant-originalarrivaltime: 24 Apr 2016 17:18:18.5557 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8bdfec6b-c71e-4ab9-8b6b-9de7cf58a5f5 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BL2PR03MB225 X-IsSubscribed: yes X-SW-Source: 2016-04/txt/msg00585.txt.bz2 Hi folks, I have a proposed change for the web site. This patch (see below) will upda= te most of the urls to HTTPS. In many cases there was a redirect; for those= I captured the new canonical address. (Per the https://cygwin.com/contrib.html, this is *not* a change to anythin= g in the winsup directory, which is why I chose the cygwin@cygwin distro) The patch can be found here: https://patch.clifton.io/cygwin/cygwin-htdocs_bsclifton_https_20160424.patch And can be verified by these checksums: sha256sum / 9e5c41d303d8d19a411d0f586dbd653cb21abd48d31868631a59e9929351a83b sha1sum / f17fd3d9d83b3478b16e523f0eb9070a22a2a5df md5sum / 90ecf222826196a5061753594fcb5846 The tool I used to detect the links (along with an explanation of why https= is preferable) can be found here: https://textslashplain.com/2016/03/17/seek-and-destroy-non-secure-reference= s-using-the-moartls-analyzer/ Thanks, Brian -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple