www.cpan.org has supported TLS since March. We're planning to make it TLS-only later in September, pending feedback. To start the process the homepage now redirects to the TLS version. Over the next days and weeks we'll make more and more of the URLs TLS-only.
Please let us know if this causes problems for common CPAN clients.
(IPv6 has also been re-enabled for www.cpan.org).
First, thank you for maintaining www.cpan.org!ReplyDelete
I think "TLS only for www.cpan.org" affects cpanminus users.
If someone has LWP but not LWP::Protocol::https, then they will fail to install modules with cpanminus.
Please look at this:
This is because cpanminus checks whether LWP works with https or not
only when mirror urls start with "https".
Why? Just because Chrome wants you to?ReplyDelete
There is a international effort on web to make it more secure. It's not only Google Chrome. We need a better web, since these days we cannot even trust on our processors (Intel/ME).ReplyDelete