Wiki.ros.org redirects to status.ros.org

Site Feedback
1

http://wiki.ros.org (http) redirects to status.ros.org . See https://github.com/jayvdb/pypidb/issues/115 for background on identifying this.

https://wiki.ros.org (https) is fine.

Note there are lots of links to HTTP, such as the headline of https://github.com/ros-infrastructure/roswiki

I guess this is related to recent ros.org host migrations https://status.ros.org/incidents/k80vryrng0z9

And it is bit related to Enforce HTTPS on ROS Wiki and https://github.com/ros-infrastructure/roswiki/issues/244

Highly recommended that ros.org goes through the steps to get added to the HSTS preload list. c.f. https://hstspreload.org/?domain=ros.org , https://hstspreload.org/?domain=www.ros.org , etc

As getting HSTS preload ready, approved and released into browsers takes a while, it would be sensible to have ROS.org added to HTTPS Everywhere. Someone requested it at https://github.com/EFForg/https-everywhere/issues/16879 , but nobody stepped up to do it.

Are the ROS related entries on https://github.com/EFForg/https-everywhere/blob/1254c87a54f15b1c0834d264825b806a04192170/src/chrome/content/rules/osuosl.org.xml still accurate?

1 Like
2

Not sure whether this was a DNS caching issue.

Just checked this (from Europe) and with both http and https links wiki.ros.org is loaded.

3

We did have the site temporarily redirecting to status.ros.org while it was under active migration but that was removed at the same time for https as http. My best guess is that you were encountering some caching on a transparent proxy that was not correctly setup.

I added to the https ticket to look at forcing hsts too.

4

I’ve found four hosts failing in that list:

They don’t appear to be related to ROS, but if they are:

Have they been replaced with new hosts, or simply removed as no longer needed?

Are there new ROS related hosts on osuosl.org ?

5

We don’t host anything under the osuosl.org domain.

6

You may not, but it is hosting ROS sites/mirrors. Perhaps they were previously involved in helping ROS infrastructure - they often help large projects until they are sufficiently stable and capable of self-hosting.

The hosts are listed as errors in the XML file I linked to, but I’ll repeat the obvious ones here.

The following HTTP all redirect to the status site on .ros.org

http://ros.osuosl.org
http://www.ros.osuosl.org
http://docs.ros.osuosl.org
http://news.ros.osuosl.org
http://wiki.ros.osuosl.org

They all fail on HTTPS due to wrong cert domains. See https://ros.osuosl.org

Other sites:

http://answers.ros.osuosl.org - mirror error

http://answers2.ros.osuosl.org - redirects to https causing cert error

http://download.ros.osuosl.org - live site

7

For all things OSU, @wdsmart.

8

I’m out of the loop on the hosting…

9

OSUOSL is our primary hosting for several services since 2013 As part of how the machines are administered they have alternative DNS resolutions under the osuosl.org domain. However we do not serve the ROS content on those domains.

I don’t know why they were added to that list and would probably suggest that they not be there at all as there’s no web content available there nor is there expected to be any at any point in the future so it’s a waste of space in the https-everywhere database and people will spend time trying to update them or expecting them to work.