Dear WOT, ever thought of switching to nginx? (HTTP/2)

Post Reply
Site-rater
Posts: 5856
Joined: Tue Sep 15, 2009 7:48 pm

Dear WOT, ever thought of switching to nginx? (HTTP/2)

Post by Site-rater » Sun Jan 03, 2016 8:49 pm

Seeing that WOT runs on lighttpd, and they don't seem to have any plans to support HTTP/2 in the near future, does MyWOT Team have any plans to install nginx instead on the servers? The reason for that is that
(1) The current mainline version of nginx, version 1.9.9, supports the new HTTP/2 protocol. Same with the commercial NGINX Plus R7 with their nginx-plus-http2 add-on.
(2) The current stable version of nginx, version 1.8.0, and the commercial version without the addon, supports SPDY, which while not as good as HTTP/2 still has performance improvements on HTTPS connections.

Perhaps something MyWOT Team could research, as it could make the site faster, not only here in the forums, but it could also perhaps be used to boost api.mywot.com performance while giving it HTTPS support, which leads to the next point:
I do notice that api.mywot.com is using Apache. Please note that the latest 2.4.18 version supports HTTP/2 with mod_http2 so hopefully it shouldn't be too hard to implement there as long as it is a dedicated/VPS server.
Also note that the api.mywot.com server, while supporting HTTPS, has an obsolete SHA-1 certificate installed, similar to what used to be on the main site. Because the main www.mywot.com certificate is wildcard, you should be able to install the key, certificate, and chain on the api.mywot.com server (see https://www.ssllabs.com/ssltest/analyze.html?d=api.mywot.com ) to fix that.

donsorg
Posts: 4026
Joined: Wed Nov 30, 2011 8:42 am

RE: Dear WOT, ever thought of switching to nginx? (HTTP/2)

Post by donsorg » Wed Jan 06, 2016 3:54 pm

Thanks for the heads up.
has an obsolete SHA-1 certificate installed
Not any more ;)

hotdoge3
Posts: 1638
Joined: Sat Jan 03, 2009 9:14 pm

RE: Dear WOT, ever thought of switching to nginx? (HTTP/2)

Post by hotdoge3 » Thu Jan 21, 2016 5:14 am

htxxtp://www.eweek.com/enterprise-apps/mozilla-re-enables-sha-1-certificate-support-in-firefox.html

Mozilla Re-enables SHA-1 Certificate Support in Firefox

SHA-1 does still matter as Mozilla backtracks on support. However, don't expect the company to support SHA-1 for the long term.

In an unexpected move, when browser vendor Mozilla released Firefox 43.0.4 on Jan. 6, it re-enabled support for newly issued SHA-1(Secure Hash Algorithm 1) security certificates. Mozilla had previously set Firefox to reject new SHA-1 signed Secure Sockets Layer/Transport Layer Security certificates as of Jan. 1.

Post Reply

Who is online

Users browsing this forum: No registered users and 4 guests