SSL for Litmus
Posted 1 year, 1 month ago at 12:24. 3 comments
This afternoon I’ll be installing a real SSL certificate for the Litmus web server to address some long-standing privacy concerns. We’ll have a redirect rule in place, so this is mainly just a heads-up so that people aren’t surprised if/when they see the cert dialog appear.
See you soon at https://litmus.mozilla.org/!
Update: the SSL site is up now with nary a cert pop-up to be seen. Nice.
Why don’t you use the wildcard *.mozilla.org cert that all the other servers (www, addons, bugzilla, despot etc.) use?
We do but the *.mozilla.org private key is only on machines IT has administrative control over. Litmus is managed by others so it has it’s own private key (and non-wildcard cert).
You shouldn’t see a cert dialog though since it’s a signed certificate from a well known root CA.
> You shouldn’t see a cert dialog though since it’s a signed certificate from a well known root CA.
Sure, I just wasn’t convinced I’d get the config right on the first pass, but we didn’t have any issues.