| Bug ID | 968367 |
|---|---|
| Summary | https://software.opensuse.org pulls fonts from insecure URL, causing Google Chrome / Chromium to complain |
| Classification | openSUSE |
| Product | openSUSE.org |
| Version | unspecified |
| Hardware | All |
| OS | All |
| Status | NEW |
| Severity | Minor |
| Priority | P5 - None |
| Component | Software Portal |
| Assignee | benji@opensuse.org |
| Reporter | dubkat@gmail.com |
| QA Contact | opensuse-communityscreening@forge.provo.novell.com |
| Found By | --- |
| Blocker | --- |
The font used on opensuse.org is pulled from: http://static.opensuse.org/themes/bento/fonts/DroidSans-Bold.ttf however, if using secured http(s), the font should be similarly loaded via https, but it's not. This causes Google Chrome / Chromium to rightfully complain about insecure content. As a side note, it also complains about the current cipher being outdated and obsolete. Thank you for your hard work. Cheers. dan / dubkat