view templates/sat_website/faq.html @ 122:d4ec0092daa0

talk about the near utilisation of Let's Encrypt in the FAQ
author souliane <souliane@mailoo.org>
date Fri, 06 Nov 2015 09:24:51 +0100
parents d2ea666fb1dd
children c0dbe7ad54c8
line wrap: on
line source

{% extends "sat_website/category.html" %}

{% comment %}
SàT website: Salut à Toi's presentation website
Copyright (C) 2012  Jérôme Poisson (goffi@goffi.org)
Copyright (C) 2015 Adrien Cossa (souliane@mailoo.org)

This file is part of SàT website.

SàT website is free software: you can redistribute it and/or modify
it under the terms of the GNU Affero General Public License as published by
the Free Software Foundation, either version 3 of the License, or
(at your option) any later version.

Foobar is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU Affero General Public License for more details.

You should have received a copy of the GNU Affero General Public License
along with Foobar.  If not, see <http://www.gnu.org/licenses/>.
{% endcomment %}

{% load i18n %}
{% load staticfiles %}
{% get_current_language as LANGUAGE_CODE %}

{% block headline %}{% trans "Frequently asked questions" %}{% endblock %}
{% block main_container %}

<div class="row"><a name="html"></a>
    <h5 class="alert alert-warning">
        {% blocktrans with demo_http="http://libervia.org" %}What is the security warning when I visit {{demo_http}}?{% endblocktrans %}
    </h5>
    <p>{% blocktrans with demo_http="http://libervia.org" demo_https="https://libervia.org" %}This message advices you to use Libervia with HTTPS instead of HTTP. The difference between the two is that HTTPS is more secure because the connection between your browser and the server is encrypted. This is especially recommended when you have to type a password. You should always use {{demo_https}} instead of {{demo_http}}.{% endblocktrans %}</p>
</div>

<div class="row"><a name="certificate"></a>
    <h5 class="alert alert-warning">
        {% blocktrans with demo_https="https://libervia.org" %}My browser says that {{demo_https}} is unsecure. What does it mean?{% endblocktrans %}
    </h5>
    <p>{% blocktrans with demo_https="https://libervia.org" cacert='<a href="http://www.cacert.org" target="#">CAcert</a>' %}The issue here is that {{cacert}}, the certification authority that we use for authenticating {{demo_https}} is not recognised by your browser. The fact your browser doesn't trust CAcert doesn't mean that it is unsecure. For us, it is even more trustable than any other certification organism and we use it on purpose. Despite some companies are offering free certificates that are recognised by every browser, we prefer to support a community-driven and transparent service like CAcert.{% endblocktrans %}</p>
    <p>{% blocktrans with demo_https="https://libervia.org" %}So for this time, even if you don't know what's going on, please trust us and accept the certificate. You have to do it only once and then your browser will not bug you anymore when you are about to connect to {{demo_https}}. If you use Mozilla Firefox, proceed this way:{% endblocktrans %}
        <div class="thumbnail">
			{% with "images/certificate/1_cert_"|add:LANGUAGE_CODE|add:'.png' as image %}
                <img class="schema" src="{% static image %}" >
			{% endwith %}
            <div class="caption">
                {% trans 'Click "I Understand the Risks" and then "Add Exception".' %}
            </div>
        </div>
        <div class="thumbnail">
            {% with "images/certificate/2_cert_"|add:LANGUAGE_CODE|add:'.png' as image %}
                <img class="schema" src="{% static image %}" >
            {% endwith %}
            <div class="caption">
                {% trans 'Click "View" and check that the fingerprint matches, then click "Confirm Security Exception".' %}
            </div>
        </div>
        {% blocktrans with fingerprint='<span class="fingerprint">9D:DF:A9:11:EB:DB:FA:E3:CA:BA:57:51:37:A4:69:29:B9:8D:BE:FE:7D:BB:80:04:FC:C4:A5:8A:47:9A:52:06</span>' %}The SHA-256 fingerprint must be {{fingerprint}}. If this is not the case, don't confirm the exception and start to worry!{% endblocktrans %}</p>
        <p>{%blocktrans with demo_https="https://libervia.org" cacert_wiki='<a href="http://wiki.cacert.org/FAQ/BrowserClients" target="#">http://wiki.cacert.org/FAQ/BrowserClients</a>' %}Alternatively, you can import the CAcert root certificate to your browser. This is actually a better solution because not only {{demo_https}} but all the websites using the same certification organism than us will be accessible without any security warning and since the first time. To do so, please follow the instructions that are given here: {{cacert_wiki}}. It may look complicated but it is not, for example with Firefox you just need to install an add-on!{% endblocktrans %}</p>
        <p>{%blocktrans with url='<a href="https://letsencrypt.org" target="#">Let\'s Encrypt</a>' %}PS: we will soon replace our CAcert certificate with one from {{url}}, and you won't be bothered by this security warning anymore.{% endblocktrans %}
</div>

{% endblock %}