559530 – https://gitweb.gentoo.org fetches random assets from thirdparty domains

Bug 559530 - https://gitweb.gentoo.org fetches random assets from thirdparty domains

Summary: https://gitweb.gentoo.org fetches random assets from thirdparty domains

Status:	RESOLVED DUPLICATE of bug 547536

Alias:	None

Product:	Gentoo Infrastructure
Classification:	Unclassified
Component:	Other web server issues (show other bugs)
Hardware:	All Linux

Importance:	Normal normal
Assignee:	Gentoo Infrastructure

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2015-09-03 14:44 UTC by Patrick Lauer
Modified:	2015-09-07 09:16 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Patrick Lauer gentoo-dev

2015-09-03 14:44:48 UTC

rackcdn.com
libravatar.org

Comment 1 Matthew Thode ( prometheanfire ) archtester

2015-09-03 16:35:06 UTC

Do we fetch insecurely?  What is the specific problem?

NEEDINFO

Comment 2 Patrick Lauer gentoo-dev

2015-09-04 07:39:01 UTC

Well, same issue as on the wiki and random other pages, if you use RequestPolicy plugin by default CSS won't get fetched, so everything displays wrong.

Plus there's lots of extra latency because of having to query multiple DNS servers, opening multiple HTTP connections, ... 


Would be a lot easier and easier to trust if all assets came from the same domain.

Comment 3 Alex Legler (RETIRED) archtester

2015-09-07 09:16:27 UTC

As already said, will be supported when sponsor supports it.

*** This bug has been marked as a duplicate of bug 547536 ***