Forum

This forum uses cookies
This forum makes use of cookies to store your login information if you are registered, and your last visit if you are not. Cookies are small text documents stored on your computer; the cookies set by this forum can only be used on this website and pose no security risk. Cookies on this forum also track the specific topics you have read and when you last read them. Please confirm whether you accept or reject these cookies being set.

A cookie will be stored in your browser regardless of choice to prevent you being asked this question again. You will be able to change your cookie settings at any time using the link in the footer.
Sentora Support Forums Sentora Forum Archives Sentora Public Support Forums v1.0.x General Support Forum v1.0.x v Install guide wget over http?

Install guide wget over http?
edavidf Offline
Sentora Member
*
OS: Ubuntu 20.04
Version: Not Installed
Server: VPS
Posts: 3
Threads: 1
Joined: Jul 2020
Reputation: 0
Sex: Undisclosed
Thanks: 0
Given 0 thank(s) in 0 post(s)
#1
Install guide wget over http?
 07-06-2020, 03:48 AM
Why is the sentora.org site not secured by ssl? How do I determine the download script is authentic without it?
Find
Reply
Thanks given by:
testing Offline
Sentora Member
*
OS: Centos
Version: Not Installed
Server: VPS
Posts: 74
Threads: 23
Joined: Jul 2017
Reputation: 0
Sex: Undisclosed
Thanks: 1
Given 3 thank(s) in 3 post(s)
#2
RE: Install guide wget over http?
 07-06-2020, 04:55 PM
You can download from github if you are concerned
Find
Reply
Thanks given by:
TGates Offline
Sentora Council - Head of Support Team
*******
OS: Ubuntu 20.04 LTS
Version: 2.0.2
Server: i7-6700K @ 4GHz, 8 cores 32GB Ram
Posts: 3 ,662
Threads: 241
Joined: May 2014
Reputation: 85
Sex: Male
Thanks: 408
Given 599 thank(s) in 464 post(s)
#3
RE: Install guide wget over http?
 07-07-2020, 12:59 PM
Also, the d/l link grabs directly from our github which is secure.
If you inspect the link you will see:

Code:
<a href="https://github.com/sentora/sentora-core/archive/master.tar.gz" class="hover-color">Latest development snapshot (.tar.gz format)</a>
-TGates - Project Council

SEARCH the Forums or read the DOCUMENTATION before posting!
Support Sentora and Donate: HERE
Find my support or modules useful? Donate to TGates HERE
Developers and code testers needed!
Contact TGates for more information
Find
Reply
Thanks given by:
edavidf Offline
Sentora Member
*
OS: Ubuntu 20.04
Version: Not Installed
Server: VPS
Posts: 3
Threads: 1
Joined: Jul 2020
Reputation: 0
Sex: Undisclosed
Thanks: 0
Given 0 thank(s) in 0 post(s)
#4
RE: Install guide wget over http?
 07-11-2020, 03:54 AM
(07-07-2020, 12:59 PM)TGates Wrote: Also, the d/l link grabs directly from our github which is secure.
If you inspect the link you will see:

Code:
<a href="https://github.com/sentora/sentora-core/archive/master.tar.gz" class="hover-color">Latest development snapshot (.tar.gz format)</a>

I understand both replies, but, in 2020, having *any* unsecured/unverified content seems both unwise and dangerous. What is the reasoning behind not adding SSL protection to the site and primary install script?
Find
Reply
Thanks given by:
edavidf Offline
Sentora Member
*
OS: Ubuntu 20.04
Version: Not Installed
Server: VPS
Posts: 3
Threads: 1
Joined: Jul 2020
Reputation: 0
Sex: Undisclosed
Thanks: 0
Given 0 thank(s) in 0 post(s)
#5
RE: Install guide wget over http?
 07-30-2020, 03:23 AM
(07-28-2020, 07:23 PM)Architects in Enfield Wrote: try github if you are concerned about the security

Thank you for the reply, but it doesn't answer my question: What is the logic behind having an insecure site, especially a site for server software which *must* be secure? With the ease and (no) cost of Let's Encrypt, it just makes no sense in 2020.
Find
Reply
Thanks given by:
jibranahmed Offline
Sentora Member
*
OS: Kali
Version: 1.0.3
Server: Home
Posts: 3
Threads: 0
Joined: Dec 2020
Reputation: 0
Sex: Male
Thanks: 2
Given 0 thank(s) in 0 post(s)
#6
RE: Install guide wget over http?
 12-15-2020, 07:07 PM
(07-30-2020, 03:23 AM)edavidf Wrote: Thank you for the reply, but it doesn't answer my question: What is the logic behind having an insecure site, especially a site for server software which *must* be secure? With the ease and (no) cost of Let's Encrypt, it just makes no sense in 2020.

I think they have not activated SSL on their website that's why it doesn't have HTTPS in the Website URL.
Find
Reply
Thanks given by:


Possibly Related Threads…
Thread Author Replies Views Last Post
apt-get install mod_ssl ERROR CMs222 9 28 ,276 11-11-2022, 09:14 PM
Last Post: zustudios
SSL install breaks apache service EGOSKY123 1 4 ,564 10-28-2020, 12:12 AM
Last Post: iraqiboy90
Having both HTTP & HTTPS (Port 443 and Port 80) sites on a server dsmarter 14 46 ,238 08-22-2020, 02:49 PM
Last Post: kenzopoker1

Forum Jump:


Users browsing this thread: 2 Guest(s)