I think this may be related to the ssl issues from earlier today, may have
been overlooked ?

Cheers
Joe

Looks like the stylesheets are loaded from shared.php.net which still
seems to be on an old certificate. Therefore the styles are not loaded....

Who can have a look into that?

Cheers

Andreas

Am 03.06.19 um 12:52 schrieb Joe Watkins:

I think this may be related to the ssl issues from earlier today, may have
been overlooked ?

Cheers
Joe

--
,,,
(o o)
+---------------------------------------------------------ooO-(_)-Ooo-+
| Andreas Heigl |
| mailto:andreas@heigl.org N 50°22'59.5" E 08°23'58" |
| http://andreas.heigl.org http://hei.gl/wiFKy7 |
+---------------------------------------------------------------------+
| http://hei.gl/root-ca |
+---------------------------------------------------------------------+

Will be fixed in a few minutes. Thanks for the report.

Sascha

https://museum.php.net/

This one is invalid also.

--
Yasuo Ohgaki
yohgaki@ohgaki.net

On Mon, Jun 3, 2019 at 9:26 PM Sascha Schumann <
sascha.schumann@myrasecurity.com> wrote:

Will be fixed in a few minutes. Thanks for the report.

Sascha

https://museum.php.net/

This one is invalid also.

And https://svn.php.net/ has also expired (see
https://bugs.php.net/78099).

--
Christoph M. Becker

Looks better now.

Sascha

Looks better now.

Wow, that was fast!

Thanks,
Christoph

Looks like the stylesheets are loaded from shared.php.net which still
seems to be on an old certificate. Therefore the styles are not loaded....

Styles are loading for me, but I get a certificate error when I try to open
https://people.php.net.

Thanks,
Theodore

Fixed people.php.net as well.

Sascha

Any chance to get https support for news.php.net?

https://bugs.php.net/bug.php?id=67680

As there are other protocols beside http/https running on news.php.net (NNTP), we unfortunately cannot switch the whole subdomain to the cdn.

Sascha

Am 03.06.19 um 17:07 schrieb Sascha Schumann:

As there are other protocols beside http/https running on news.php.net (NNTP), we unfortunately cannot switch the whole subdomain to the cdn.

How would you like to switch to the CDN? By DNS? Or we need to create a
separate DNS-Entry for NNTP (nntp.php.net). I'd need to check how much
reconfiguration that'd mean though... And that might mean that others
will need to change their endpoints from news.php.net to nntp.php.net.
IIRC externals.io f.e. uses NNTP to retrieve the messages....

Cheers

Andreas

--
,,,
(o o)
+---------------------------------------------------------ooO-(_)-Ooo-+
| Andreas Heigl |
| mailto:andreas@heigl.org N 50°22'59.5" E 08°23'58" |
| http://andreas.heigl.org http://hei.gl/wiFKy7 |
+---------------------------------------------------------------------+
| http://hei.gl/root-ca |
+---------------------------------------------------------------------+

https://news-web.php.net/

Does it work for you? I don't know the application, so if there are any direct references to http://news.php.net they would need to be fixed, as we do not rewrite the HTML.

Sascha

https://news-web.php.net/

Does it work for you? I don't know the application, so if there are any direct references to http://news.php.net they would need to be fixed, as we do not rewrite the HTML.

At least it works fine for newsreaders (I got your mail via one of
those), and for externals.io (see
https://externals.io/message/105820#105833).

--
Christoph M. Becker

Alright, the apache2 configs for news/lists redirect to https://news-web.php.net now.

Sascha

Looks better now.

Sascha, could you please have a look at the downloads.php.net
certificate? This has expired on June 3rd as well.

Thanks,
Christoph

Cannot we nuke that subdomain?

ls -la /local/www/sites/downloads.php.net/

total 8
drwxr-xr-x 2 root root 4096 Nov 6 2014 .
drwxr-xr-x 4 root root 4096 Jul 18 2018 ..

The apache config apparently just redirects everything somewhere else.

Sascha

Cannot we nuke that subdomain?

ls -la /local/www/sites/downloads.php.net/

total 8
drwxr-xr-x 2 root root 4096 Nov 6 2014 .
drwxr-xr-x 4 root root 4096 Jul 18 2018 ..

The apache config apparently just redirects everything somewhere else.

Hmm, there should be home dirs for all release managers, which are
supposed to contain the PHP pre-release tarballs and signature files,
e.g. http://downloads.php.net/~cmb/. AIUI, the uploads go to
downloads.php.net directly.

Thanks,
Christoph

Cert is fixed on the machine now.
Sascha

Cert is fixed on the machine now.

Thanks!

Hello,

Cert is fixed on the machine now.

Thanks!

--

Maybe looking at this might be also good one day. When doing

wget https://downloads.php.net/~cmb/php-7.3/php-7.3.6RC1.tar.xz

this is the output when not using --no-check-certificate:

Resolving downloads.php.net... 104.236.32.144, 2604:a880:800:10::2dd:1
Connecting to downloads.php.net|104.236.32.144|:443... connected.
ERROR: cannot verify downloads.php.net's certificate, issued by
'CN=Thawte TLS RSA CA G1,OU=www.digicert.com,O=DigiCert Inc,C=US':
Unable to locally verify the issuer's authority.
To connect to downloads.php.net insecurely, use `--no-check-certificate'.

For the www.php.net page this works ok:
wget https://www.php.net/distributions/php-7.3.6.tar.xz

--
Peter Kokot

Please try again.

Sascha

On Wed, 12 Jun 2019 at 14:29, Sascha Schumann
sascha.schumann@myrasecurity.com wrote:

Please try again.

Sascha

Great. Now it works. Thank you so much, Sascha...

--
Peter Kokot