ssl

A zero-day flaw in the TLS and SSL protocols has been made public and man-in-the-middle attacks have been demonstrated. I caught wind of this off of ZDnet.

http://news.zdnet.co.uk/security/0,1000000189,39860592,00.htm

Thoughts?

After a good discussion with others, I cam up with a roadmap of the SSL support in Aegir which is of course up for discussion, but I think it's pretty neat and allows for targeting the problem one chunk at a time. All patches welcome from here on!

There has been some talks in the issue tracker recently about implementing SSL support in Aegir. It's an exciting feature I've been thinking about for a while, and I'm at the point of trying to figure out how it would actually be implemented. I wrote up a first spec draft of what it would look like and I would like to seek wider discussion on the subject. How do you think this should be handled? How does your provider deal with SSL right now? Any specific issues we need to think about?

Looking for an experienced Drupal Developer to integrate a subscription system on an existing Drupal 6 site. You'll use Ubercart for D6, which is currently in active development, and will work with Ryan of Ubercart to shore up any needed features which we will sponsor for development. I've already talked to him about sponsored development, but I need someone who really knows what they're doing to take their work and make it solid on the target site.