HyperText Transfer Protocol Secure (HTTPS) links in license headers?

10 views
Skip to first unread message

Lloyd

unread,
Oct 8, 2014, 1:45:35 PM10/8/14
to le...@lists.mozilla.org
Hi Mozilla Legal list,


While I was working on replacing 'http' with 'https' where appropriate
in some projects' documentation I'm involved with, I noticed that
https://www.mozilla.org/MPL/headers/ still uses http in the
"copy-and-pasteable license headers for Mozilla code".

Visiting http://mozilla.org/MPL/2.0/ does redirect to
https://www.mozilla.org/MPL/2.0/ as expected.

Is it time to update https://www.mozilla.org/MPL/headers/ such that
the templates are like the one below?

/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at https://mozilla.org/MPL/2.0/. */


Thank you,
--
I can't grow without light,
Lloyd
http://foolswisdom.com/

Gervase Markham

unread,
Oct 9, 2014, 6:28:15 AM10/9/14
to Lloyd
On 08/10/14 18:45, Lloyd wrote:
> Is it time to update https://www.mozilla.org/MPL/headers/ such that
> the templates are like the one below?

The advantage of HTTP is that still not all clients support HTTPS.
However, given that we are unilaterally redirecting to HTTPS, that's no
longer an advantage.

Still, I think the right time to do this would be when mozilla.org
starts using HSTS (which basically means "we're _never_ going back to
HTTP").

Also, filed https://bugzilla.mozilla.org/show_bug.cgi?id=1080475 while
checking to see if we do use HSTS.

Gerv

Reply all
Reply to author
Forward
0 new messages