AniNIX/Kapisi
3
0
Fork 0
Code Issues 30 Pull Requests 1 Projects 1 Releases Wiki Activity

Drop 80/tcp/http #43

New Issue
Open
opened 2025-12-01 11:49:09 -06:00 by DarkFeather · 0 comments
DarkFeather commented 2025-12-01 11:49:09 -06:00
Owner
Copy Link

I currently have a block in our webserver config that redirects 80/tcp/http to 443/tcp/https for all connections. This has been a legacy support for browsers that take an input of aninix.net and try http://aninix.net/ as the resolved URL.

This will change in April 2026 as detailed in this forum -- browsers will start using HTTPS by default and warning users about HTTP connections. I do not want to support plaintext connections, as I use a communicated chain of trust to present the webserver and encryption helps to ensure that content is unmodified in transit.

I will drop this block and remove the firewall rule. Browers attempting to access http://aninix.net should redirect up to HTTPS -- those that don't will fail the connection. Search engines seem to understand that we are an HTTPS website. We will also inform users by RSS & social media.

I currently have [a block in our webserver config](/AniNIX/Kapisi/src/commit/31992aa48738981bf81c87e9405e1a1478ff5944/roles/WebServer/files/nginx.conf#L28) that redirects 80/tcp/http to 443/tcp/https for all connections. This has been a legacy support for browsers that take an input of `aninix.net` and try `http://aninix.net/` as the resolved URL. This will change in April 2026 as detailed in [this forum](https://blog.chromium.org/2023/08/towards-https-by-default.html) -- browsers will start using HTTPS by default and warning users about HTTP connections. I do not want to support plaintext connections, as I use a communicated chain of trust to present the webserver and encryption helps to ensure that content is unmodified in transit. I will drop this block and remove the firewall rule. Browers attempting to access `http://aninix.net` should redirect up to HTTPS -- those that don't will fail the connection. Search engines seem to understand that we are an HTTPS website. We will also inform users by RSS & social media.
DarkFeather self-assigned this 2025-12-01 11:50:56 -06:00
DarkFeather added the due date 2026-04-01 2025-12-01 11:51:19 -06:00
DarkFeather added a new dependency 2025-12-01 11:51:37 -06:00
#42 Geofencing to the US and establish TOR address.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Blocked
There are functional or technical reasons this can't be implemented yet
Duplicate
Another issue or PR already describes this issue
On-hold
Evaluated but not enough resources to complete now
Peer-review
Being reviewed for quality prior to merge
RFC
More information and feedback is needed
Wontfix
Not a bug -- way it works
Blocked
There are functional or technical reasons this can't be implemented yet
Duplicate
Another issue or PR already describes this issue
In-progress
Being worked.
On-hold
Evaluated but not enough resources to complete now
Peer-review
Being reviewed for quality prior to merge
RFC
More information and feedback is needed
Wontfix
Not a bug -- way it works
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
DarkFeather jml project2501
No Assignees DarkFeather
1 Participants
Notifications
Due Date
2026-04-01
Depends on
#42 Geofencing to the US and establish TOR address.
AniNIX/Kapisi
Reference: AniNIX/Kapisi#43
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?