HyperText Transfer Protocol Secure (HTTPS) links in license headers?
10 views
Skip to first unread message
Lloyd
unread,
Oct 8, 2014, 1:45:35 PM10/8/14
Delete
You do not have permission to delete messages in this group
Copy link
Report message
Sign in to report message
Show original message
Either email addresses are anonymous for this group or you need the view member email addresses permission to view the original message
to le...@lists.mozilla.org
Hi Mozilla Legal list,
While I was working on replacing 'http' with 'https' where appropriate
in some projects' documentation I'm involved with, I noticed that
https://www.mozilla.org/MPL/headers/ still uses http in the
"copy-and-pasteable license headers for Mozilla code".
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at https://mozilla.org/MPL/2.0/. */
The advantage of HTTP is that still not all clients support HTTPS.
However, given that we are unilaterally redirecting to HTTPS, that's no
longer an advantage.
Still, I think the right time to do this would be when mozilla.org starts using HSTS (which basically means "we're _never_ going back to
HTTP").