unofficial mirror of bug-guix@gnu.org 
 help / color / mirror / code / Atom feed
From: Jean Louis <guix@rcdrun.com>
To: "Ludovic Courtès" <ludo@gnu.org>
Cc: Jean Louis <guix@rcdrun.com>, 22972@debbugs.gnu.org
Subject: bug#22972: insecure content on: https://gnu.org/software/guix/packages/
Date: Fri, 25 Mar 2016 10:43:56 +0100	[thread overview]
Message-ID: <20160325094356.GK5051@protected.rcdrun.com> (raw)
In-Reply-To: <87zitnt108.fsf@gnu.org>

Hello,

The content is insecure as shown by Icecat. That happens because either
scripts are included (did not check it) which are with http:// or images
(I did check it).

When website wants to provide secure and non-secure version, in that
case, one shall check all links to scripts and images, that they can be
accessed by secure browsing, and then instead of writing http://, one
can simply write // like <img src="//www.gnu.org/some-image.jpg">

Small remark to the page with packages: it is in few lines,
which makes editing, even with Emacs harder. There shall be new lines or
indenting after > or after each package. Otherwise it makes editing the
HTML very hard (I know there is source, but looking inside of HTML is
difficult).

The package descriptions shall not be opened by Javascript but on the
long run, each package shall get its own page, and of course there shall
be search engine, just like with Debian. This all becomes totally easy
with guix being Guile module, and exciting.

Louis

On Fri, Mar 25, 2016 at 09:28:23AM +0100, Ludovic Courtès wrote:
> Jean Louis <guix@rcdrun.com> skribis:
> 
> > The icecat is reporting insecure content on:
> > https://gnu.org/software/guix/packages/
> >
> > and it shall be corrected, as package "Expand" is not visible.
> 
> I believe this is no longer the case, or at least IceCat 38.6.0-gnu1
> does not show any such problem here.
> 
> Could you confirm?
> 
> Thanks,
> Ludo’.

  reply	other threads:[~2016-03-25  9:46 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2016-03-10  0:10 bug#22972: insecure content on: https://gnu.org/software/guix/packages/ Jean Louis
2016-03-25  8:28 ` Ludovic Courtès
2016-03-25  9:43   ` Jean Louis [this message]
2016-03-25 12:35     ` Ludovic Courtès
2018-02-05 21:46 ` Andreas Enge

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

  List information: https://guix.gnu.org/

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20160325094356.GK5051@protected.rcdrun.com \
    --to=guix@rcdrun.com \
    --cc=22972@debbugs.gnu.org \
    --cc=ludo@gnu.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/guix.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).