qemu-devel.nongnu.org archive mirror
 help / color / mirror / Atom feed
* [Qemu-devel] QEMU website (wiki) improvements
@ 2015-02-28 15:29 Stefan Weil
  2015-03-02 13:36 ` Claudio Fontana
  2015-03-02 22:12 ` Stefan Hajnoczi
  0 siblings, 2 replies; 9+ messages in thread
From: Stefan Weil @ 2015-02-28 15:29 UTC (permalink / raw)
  To: qemu-devel, Michael Roth

Hello Michael,

here are some suggestions / thoughts for the QEMU website.

* http://wiki.qemu.org/Main_Pagedoes not pass the W3C validator, see
http://validator.w3.org/check?uri=http%3A%2F%2Fwiki.qemu.org.
   They can be easily fixed, but not by normal wiki users.

* It tracks users (g+ image 
https://ssl.gstatic.com/images/icons/gplus-32.png).
   Do we need that, or could we improve privacy?

* It does not support secure access (https), so each login is insecure.
   Can we get a free server certificate?

Regards
Stefan

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2015-02-28 15:29 [Qemu-devel] QEMU website (wiki) improvements Stefan Weil
@ 2015-03-02 13:36 ` Claudio Fontana
  2015-03-02 14:01   ` Peter Maydell
  2015-03-02 22:12 ` Stefan Hajnoczi
  1 sibling, 1 reply; 9+ messages in thread
From: Claudio Fontana @ 2015-03-02 13:36 UTC (permalink / raw)
  To: Stefan Weil, qemu-devel, Michael Roth

On 28.02.2015 16:29, Stefan Weil wrote:
> Hello Michael,
> 
> here are some suggestions / thoughts for the QEMU website.
> 
> * http://wiki.qemu.org/Main_Pagedoes not pass the W3C validator, see
> http://validator.w3.org/check?uri=http%3A%2F%2Fwiki.qemu.org.
>   They can be easily fixed, but not by normal wiki users.
> 
> * It tracks users (g+ image https://ssl.gstatic.com/images/icons/gplus-32.png).
>   Do we need that, or could we improve privacy?
> 
> * It does not support secure access (https), so each login is insecure.
>   Can we get a free server certificate?
> 
> Regards
> Stefan

Another suggestion for the QEMU website: improve the testing page,
adding at least one ready-to-run image for smoke testing for each supported arch.

http://wiki.qemu.org/Testing

In particular I would like to see a minimal sparc64 image added, as well as a
minimal x86_64 image. It is useful for testing tcg backends to have little endian and big endian 64-bit images.

Ciao,

Claudio

-- 
Claudio Fontana
Server Virtualization Architect
Huawei Technologies Duesseldorf GmbH
Riesstraße 25 - 80992 München

office: +49 89 158834 4135
mobile: +49 15253060158

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2015-03-02 13:36 ` Claudio Fontana
@ 2015-03-02 14:01   ` Peter Maydell
  2015-03-02 14:31     ` Claudio Fontana
  0 siblings, 1 reply; 9+ messages in thread
From: Peter Maydell @ 2015-03-02 14:01 UTC (permalink / raw)
  To: Claudio Fontana; +Cc: Stefan Weil, QEMU Developers, Michael Roth

On 2 March 2015 at 22:36, Claudio Fontana <claudio.fontana@huawei.com> wrote:
> Another suggestion for the QEMU website: improve the testing page,
> adding at least one ready-to-run image for smoke testing for each supported arch.
>
> http://wiki.qemu.org/Testing

The thing about providing Linux system images is the awkwardness of
satisfying the GPL source-code-provision requirements for everything
in them... It would be nice if new images came with complete
how-to-reproduce-this-image information.

-- PMM

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2015-03-02 14:01   ` Peter Maydell
@ 2015-03-02 14:31     ` Claudio Fontana
  0 siblings, 0 replies; 9+ messages in thread
From: Claudio Fontana @ 2015-03-02 14:31 UTC (permalink / raw)
  To: Peter Maydell; +Cc: Stefan Weil, QEMU Developers, Michael Roth

On 02.03.2015 15:01, Peter Maydell wrote:
> On 2 March 2015 at 22:36, Claudio Fontana <claudio.fontana@huawei.com> wrote:
>> Another suggestion for the QEMU website: improve the testing page,
>> adding at least one ready-to-run image for smoke testing for each supported arch.
>>
>> http://wiki.qemu.org/Testing
> 
> The thing about providing Linux system images is the awkwardness of
> satisfying the GPL source-code-provision requirements for everything
> in them... It would be nice if new images came with complete
> how-to-reproduce-this-image information.
> 
> -- PMM
>

What about adding FreeBSD Sparc64 and x86_64 images, with the minimal amount of GPL packages required?
We could then add to the same testing pages the exact sources of the packages for download, which should not be that many,
according to:

https://wiki.freebsd.org/GPLinBase

just an idea...

Claudio

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2015-02-28 15:29 [Qemu-devel] QEMU website (wiki) improvements Stefan Weil
  2015-03-02 13:36 ` Claudio Fontana
@ 2015-03-02 22:12 ` Stefan Hajnoczi
  2017-01-22 15:19   ` Stefan Weil
  1 sibling, 1 reply; 9+ messages in thread
From: Stefan Hajnoczi @ 2015-03-02 22:12 UTC (permalink / raw)
  To: Stefan Weil; +Cc: qemu-devel, Michael Roth

[-- Attachment #1: Type: text/plain, Size: 673 bytes --]

On Sat, Feb 28, 2015 at 04:29:44PM +0100, Stefan Weil wrote:
> * It does not support secure access (https), so each login is insecure.
>   Can we get a free server certificate?

This is on my todo list.  I'm travelling right now but will work on it
over the coming weeks.

There are some gotchas:

1. qemu.org vs qemu-project.org.  Unless we get a SNI certificate, the
   certificate will only be valid for one or the other.  Users will get
   an untrusted certificate message if they go to the other domain name.

2. We use subdomains, so a wildcard certificate is necessary.  That's
   not always offered for free so I need to compare the certificate
   vendors.

Stefan

[-- Attachment #2: Type: application/pgp-signature, Size: 473 bytes --]

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2015-03-02 22:12 ` Stefan Hajnoczi
@ 2017-01-22 15:19   ` Stefan Weil
  2017-01-23 10:28     ` Stefan Hajnoczi
  0 siblings, 1 reply; 9+ messages in thread
From: Stefan Weil @ 2017-01-22 15:19 UTC (permalink / raw)
  To: Stefan Hajnoczi; +Cc: qemu-devel, Michael Roth

On 03/02/15 23:12, Stefan Hajnoczi wrote:
> On Sat, Feb 28, 2015 at 04:29:44PM +0100, Stefan Weil wrote:
>> * It does not support secure access (https), so each login is insecure.
>>   Can we get a free server certificate?
>
> This is on my todo list.  I'm travelling right now but will work on it
> over the coming weeks.
>
> There are some gotchas:
>
> 1. qemu.org vs qemu-project.org.  Unless we get a SNI certificate, the
>    certificate will only be valid for one or the other.  Users will get
>    an untrusted certificate message if they go to the other domain name.
>
> 2. We use subdomains, so a wildcard certificate is necessary.  That's
>    not always offered for free so I need to compare the certificate
>    vendors.
>
> Stefan


Although this discussion thread is rather old, its subject
still applies.

In the meantime there are free certificates available.
We could add https support with a certificate from
https://letsencrypt.org/. As long as there is only a
small number of host names (*), I'd simply add them all
to the primary certificate. In addition, SNI certificates
for the different names can be installed.

I can help with the installation if that is needed.

Stefan

(*)

qemu.org
qemu.osuosl.org
qemu-project.org
wiki.qemu.org
wiki.qemu-project.org
www.qemu.org
www.qemu-project.org

Are there more host names used?

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2017-01-22 15:19   ` Stefan Weil
@ 2017-01-23 10:28     ` Stefan Hajnoczi
  2017-03-28 19:37       ` Stefan Weil
  2017-07-01 17:35       ` Stefan Weil
  0 siblings, 2 replies; 9+ messages in thread
From: Stefan Hajnoczi @ 2017-01-23 10:28 UTC (permalink / raw)
  To: Stefan Weil; +Cc: qemu-devel, Michael Roth

[-- Attachment #1: Type: text/plain, Size: 1681 bytes --]

On Sun, Jan 22, 2017 at 04:19:43PM +0100, Stefan Weil wrote:
> On 03/02/15 23:12, Stefan Hajnoczi wrote:
> > On Sat, Feb 28, 2015 at 04:29:44PM +0100, Stefan Weil wrote:
> > > * It does not support secure access (https), so each login is insecure.
> > >   Can we get a free server certificate?
> > 
> > This is on my todo list.  I'm travelling right now but will work on it
> > over the coming weeks.
> > 
> > There are some gotchas:
> > 
> > 1. qemu.org vs qemu-project.org.  Unless we get a SNI certificate, the
> >    certificate will only be valid for one or the other.  Users will get
> >    an untrusted certificate message if they go to the other domain name.
> > 
> > 2. We use subdomains, so a wildcard certificate is necessary.  That's
> >    not always offered for free so I need to compare the certificate
> >    vendors.
> > 
> > Stefan
> 
> 
> Although this discussion thread is rather old, its subject
> still applies.
> 
> In the meantime there are free certificates available.
> We could add https support with a certificate from
> https://letsencrypt.org/. As long as there is only a
> small number of host names (*), I'd simply add them all
> to the primary certificate. In addition, SNI certificates
> for the different names can be installed.

Good idea, Jeff and I have discussed Let's Encrypt and have experience
setting it up.

> I can help with the installation if that is needed.
> 
> Stefan
> 
> (*)
> 
> qemu.org
> qemu.osuosl.org
> qemu-project.org
> wiki.qemu.org
> wiki.qemu-project.org
> www.qemu.org
> www.qemu-project.org
> 
> Are there more host names used?

git.qemu.org
git.qemu-project.org

[-- Attachment #2: signature.asc --]
[-- Type: application/pgp-signature, Size: 455 bytes --]

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2017-01-23 10:28     ` Stefan Hajnoczi
@ 2017-03-28 19:37       ` Stefan Weil
  2017-07-01 17:35       ` Stefan Weil
  1 sibling, 0 replies; 9+ messages in thread
From: Stefan Weil @ 2017-03-28 19:37 UTC (permalink / raw)
  To: Stefan Hajnoczi; +Cc: qemu-devel, Michael Roth

Am 23.01.2017 um 11:28 schrieb Stefan Hajnoczi:
> On Sun, Jan 22, 2017 at 04:19:43PM +0100, Stefan Weil wrote:
>> On 03/02/15 23:12, Stefan Hajnoczi wrote:
>>> On Sat, Feb 28, 2015 at 04:29:44PM +0100, Stefan Weil wrote:
>>>> * It does not support secure access (https), so each login is insecure.
>>>>   Can we get a free server certificate?
>>>
>>> This is on my todo list.  I'm travelling right now but will work on it
>>> over the coming weeks.
>>>
>>> There are some gotchas:
>>>
>>> 1. qemu.org vs qemu-project.org.  Unless we get a SNI certificate, the
>>>    certificate will only be valid for one or the other.  Users will get
>>>    an untrusted certificate message if they go to the other domain name.
>>>
>>> 2. We use subdomains, so a wildcard certificate is necessary.  That's
>>>    not always offered for free so I need to compare the certificate
>>>    vendors.
>>>
>>> Stefan
>>
>>
>> Although this discussion thread is rather old, its subject
>> still applies.
>>
>> In the meantime there are free certificates available.
>> We could add https support with a certificate from
>> https://letsencrypt.org/. As long as there is only a
>> small number of host names (*), I'd simply add them all
>> to the primary certificate. In addition, SNI certificates
>> for the different names can be installed.
>
> Good idea, Jeff and I have discussed Let's Encrypt and have experience
> setting it up.
>
>> I can help with the installation if that is needed.
>>
>> Stefan
>>
>> (*)
>>
>> qemu.org
>> qemu.osuosl.org
>> qemu-project.org
>> wiki.qemu.org
>> wiki.qemu-project.org
>> www.qemu.org
>> www.qemu-project.org
>>
>> Are there more host names used?
>
> git.qemu.org
> git.qemu-project.org
>

Update: Currently https://www.qemu-project.org/ supports secure
connections, but uses a self-signed certificate which was issued
for qemu.org, so it still cannot be simply used in most browsers.

Regards
Stefan

^ permalink raw reply	[flat|nested] 9+ messages in thread

* Re: [Qemu-devel] QEMU website (wiki) improvements
  2017-01-23 10:28     ` Stefan Hajnoczi
  2017-03-28 19:37       ` Stefan Weil
@ 2017-07-01 17:35       ` Stefan Weil
  1 sibling, 0 replies; 9+ messages in thread
From: Stefan Weil @ 2017-07-01 17:35 UTC (permalink / raw)
  To: Stefan Hajnoczi; +Cc: qemu-devel, Michael Roth

Am 23.01.2017 um 11:28 schrieb Stefan Hajnoczi:
> On Sun, Jan 22, 2017 at 04:19:43PM +0100, Stefan Weil wrote:
>> On 03/02/15 23:12, Stefan Hajnoczi wrote:
>>> On Sat, Feb 28, 2015 at 04:29:44PM +0100, Stefan Weil wrote:
>>>> * It does not support secure access (https), so each login is insecure.
>>>>   Can we get a free server certificate?
>>>
>>> This is on my todo list.  I'm travelling right now but will work on it
>>> over the coming weeks.
>>>
>>> There are some gotchas:
>>>
>>> 1. qemu.org vs qemu-project.org.  Unless we get a SNI certificate, the
>>>    certificate will only be valid for one or the other.  Users will get
>>>    an untrusted certificate message if they go to the other domain name.
>>>
>>> 2. We use subdomains, so a wildcard certificate is necessary.  That's
>>>    not always offered for free so I need to compare the certificate
>>>    vendors.
>>>
>>> Stefan
>>
>>
>> Although this discussion thread is rather old, its subject
>> still applies.
>>
>> In the meantime there are free certificates available.
>> We could add https support with a certificate from
>> https://letsencrypt.org/. As long as there is only a
>> small number of host names (*), I'd simply add them all
>> to the primary certificate. In addition, SNI certificates
>> for the different names can be installed.
> 
> Good idea, Jeff and I have discussed Let's Encrypt and have experience
> setting it up.
> 
>> I can help with the installation if that is needed.
>>
>> Stefan
>>
>> (*)
>>
>> qemu.org
>> qemu.osuosl.org
>> qemu-project.org
>> wiki.qemu.org
>> wiki.qemu-project.org
>> www.qemu.org
>> www.qemu-project.org
>>
>> Are there more host names used?
> 
> git.qemu.org
> git.qemu-project.org
> 

It looks like there were some changes since my last mail:

The official website is now again www.qemu.org instead of
qemu-project.org. Is qemu-project.org now deprecated?

Also HTTPS was enabled, but uses a self signed certificate
and does not show the correct contents, so
https://www.qemu.org/ still does not work.

Stefan

^ permalink raw reply	[flat|nested] 9+ messages in thread

end of thread, other threads:[~2017-07-01 17:35 UTC | newest]

Thread overview: 9+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-02-28 15:29 [Qemu-devel] QEMU website (wiki) improvements Stefan Weil
2015-03-02 13:36 ` Claudio Fontana
2015-03-02 14:01   ` Peter Maydell
2015-03-02 14:31     ` Claudio Fontana
2015-03-02 22:12 ` Stefan Hajnoczi
2017-01-22 15:19   ` Stefan Weil
2017-01-23 10:28     ` Stefan Hajnoczi
2017-03-28 19:37       ` Stefan Weil
2017-07-01 17:35       ` Stefan Weil

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).