Last modified: 2013-12-30 04:39:32 UTC
status.wikimedia.org is using an security certificate from *.io.watchmouse.com which give a warning in IE. It is possible to install a wikimedia certificate on that domain? Thanks.
Because it's offsite. It'll need it's own specific cert buying and assigning
I doubt this is feasible - it is hosted on Amazon AWS, so they'd have to fire up a separate watchmouse AWS LB instance just to serve Wikimedia status? ;-)
If we can't get it on a correct cert, we might want to redirect to its canonical domain instead so it at least loads properly. Main obvious downside is if our redirector or iframe wrapper goes down, you don't see it on our pretty domain anymore. ;)
Removing dependency to bug 27946 which is secure.wikimedia.org.
*** Bug 44760 has been marked as a duplicate of this bug. ***
The ops ticket is RT #1849
So this certificate is served by Nimsoft, and we have no control over it. I'll paste the reasoning from RT: it is just a CNAME for status.watchmouse.com status.wikimedia.org is an alias for status.watchmouse.com. status.watchmouse.com is an alias for dualstack.lb-1710199131.us-east-1.elb.amazonaws.com. In the watchmouse UI, in "Public folders" setup you can change the CNAME but nothing about SSL or certificates. And the failure is on their side already anyways, because status.watchmouse.com itself does not show the correct cert status.watchmouse.com uses an invalid security certificate. The certificate is only valid for *.io.watchmouse.com Then folks ask if we can redirect, the answer is no. It is a status page for when the cluster is down, therefore redirecting via the cluster is non-ideal. So this is a wontfix, because we cantfix.