HTTPS enabled

[J65nko]

It has taken a while, but I finally found a solution for enabling HTTPS for Daemonforums
I configured an OpenBSD relayd to do the HTTPS with a SSL certificate from https://SSLs.com

The same relayd forwards the decrypted https requests to the original daemonforums site through an encrypted connection. It also receives the http answers through this encrypted connection, wraps them with SSL into HTTPS and sends it to the client.

There are some issues that have to be ironed out. But those are mainly in the administration side.

Also the current relayd will be retired about the 20th of August. I have to migrate it to another VPS. So please be prepared to encounter some availability issues around that date. I will make an announcement which specific date and time.

[J65nko]

From https://ssllabs.com/ we get an A+ rating for their SSL Server Test.

Firefox on my Lenovo tablet still complains the connection is insecure, but that is probably because of the minor reverse DNS issue:

Code:

$ dig +short daemonforums.org
136.144.199.186

$ dig +short -x 136.144.199.186
siralas.nl.

The reverse DNS should return daemonforums.org but it does not yet .....

[J65nko]

I just found and fixed the issue why Firefox complains "the connection is not secure" although it served over https.

The issue is called 'mixed content'. This happens when a web page is served over https but then loads for example images over http. See https://web.dev/what-is-mixed-conten...ource=devtools

If you look at the bottom of the page, you see a link to Marshall Kirk McKusick web site concerning the BSD daemon image copyright. The link was "http://www.mckusick.com"
Changing that to "https://" solved it. There were a couple more but those were easily solved in the forum options administration panel.

So now Firefox also finds daemonforums.org secure .....