Page MenuHomePhabricator
Create Task
Maniphest T118655

Wikipedia should support DNSSEC and TLSA
Closed, DuplicatePublic
Actions

Description

Since Wikipedia has now gone HTTPS only, it is time for the project to also upgrade its DNS records for better security.

Wikipedia should update its DNS servers to support DNSSEC, and should also publish valid TLSA and DNSSEC records for all accessible sites and servers.

This will ensure that DNS cache poisoning attacks cannot be used to intercept the your users' information, and it will also ensure that a compromised Certificate Authority cannot issue certificates allowing for the impersonation of Wikipedia.

Beyond this, it would simply be good practice Wikipedia to support all standardized security techniques in order to support a freer and safer internet.

Event Timeline

Vertigre created this task.Nov 14 2015, 8:12 PM
Vertigre raised the priority of this task from to Needs Triage.
Vertigre updated the task description. (Show Details)
Vertigre added a project: DNS.
Vertigre subscribed.
Restricted Application added subscribers: StudiesWorld, Aklapper. · View Herald TranscriptNov 14 2015, 8:12 PM
BBlack closed this task as a duplicate of T26413: Consider DNSSec.Nov 14 2015, 10:31 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL