HTTPS/domains
< HTTPS
List of domains with HTTPS support status
domain | http | https | HTTPS only[1] | Forward Secrecy[2] | HSTS | protocol | certificate | SSL Labs | Server |
---|---|---|---|---|---|---|---|---|---|
*.wikipedia.org | http | https | Yes* | ECDHE | 1 year;sub;preload | TLS 1.2 | SHA256 ECC | [1] | text/mobile |
wikimedia.org | http | https | Yes* | ECDHE | 1 year | TLS 1.2 | SHA256 ECC | [2] | text |
*.wikidata.org | http | https | Yes* | ECDHE | 1 year;sub;preload | TLS 1.2 | SHA256 ECC | [3] | text/mobile |
*.mediawiki.org | http | https | Yes* | ECDHE | 1 year;sub;preload | TLS 1.2 | SHA256 ECC | [4] | text/mobile |
*.wikimediafoundation.org | http | https | Yes* | ECDHE | 1 year;sub;preload | TLS 1.2 | SHA256 ECC | [5] | text/mobile |
*.wikibooks.org | http | https | Yes* | ECDHE | 1 year;sub;preload | TLS 1.2 | SHA256 ECC | [6] | text/mobile |
bugzilla.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2,3) | TLS 1.2 | SHA256 ECC | [7] | misc-web |
bug-attachment.wikimedia.org | http | https | Yes* | ECDHE | 1 year | TLS 1.2 | SHA256 ECC | [8] | text |
old-bugzilla.wikimedia.org | http | https | Yes* (redir) | ECDHE | 1 year | TLS 1.2 | SHA256 ECC | [9] | text |
static-bugzilla.wikimedia.org | http | https | Yes | ECHDE | No | TLS 1.2 | SHA256 ECC | [10] | misc-web |
gerrit.wikimedia.org | http | https | Yes* | ECHDE | 1 year (1,2) | TLS 1.2 | SHA256 | [11] | Apache/2.2.22 |
lists.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 | [12] | Apache/2.2.14 |
rt.wikimedia.org | http | https | Yes* | ECHDE | 1 year (1,2) | TLS 1.2 | SHA256 | [13] | Apache/2.2.22 |
git.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 ECC | [14] | misc-web |
dumps.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [15] | nginx/1.1.19 |
gdash.wikimedia.org | http | https | Yes* | ECDHE | 7 days (1) | TLS 1.2 | SHA256 ECC | [16] | misc-web |
wikitech.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2,3) | TLS 1.2 | SHA256 | [17] | Apache |
wikitech-static.wikimedia.org | http | https | Yes | ECHDE | No | TLS 1.2 | SHA256 | [18] | Apache/2.2.22 |
ticket.wikimedia.org | http | https | Yes* | ECHDE | 1 year (1,2,3) | TLS 1.2 | SHA256 | [19] | Apache/2.2.22 |
graphite.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 ECC | [20] | misc-web |
noc.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [21] | misc-web |
ganglia.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [22] | Apache |
blog.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [23] | nginx (external) |
techblog.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [24] | nginx (external) |
integration.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [25] | misc-web |
tools.wmflabs.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [26] | nginx/1.5.0 |
doc.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [27] | misc-web |
donate.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [28] | text |
racktables.wikimedia.org | http | https | Yes* | ECDHE | No (1) | TLS 1.2 | SHA256 ECC | [29] | misc-web |
librenms.wikimedia.org | http | https | Yes | ECHDE | No | TLS 1.2 | SHA256 | [30] | Apache/2.2.22 |
icinga.wikimedia.org | http | https | Yes* | ECHDE | 1 year | TLS 1.2 | SHA256 | [31] | Apache/2.2.22 |
etherpad.wikimedia.org | http | https | Yes* | ECDHE | 7 days | TLS 1.2 | SHA256 ECC | [32] | misc-web |
metrics.wmflabs.org | http | https | Yes | ECDHE | No | TLS 1.2 | SHA256 | [33] | nginx/1.5.0 |
metrics.wikimedia.org | http | https | Yes | ECDHE | No | TLS 1.2 | SHA256 ECC | [34] | misc-web |
stats.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 ECC | [35] | misc-web |
store.wikimedia.org | http | https | No | ECDHE | No | TLS 1.2 | SHA256 | [36] | nginx (external) |
tendril.wikimedia.org | http | https | Yes* | ECHDE | 1 year (1,2) | TLS 1.2 | SHA256 | [37] | Apache/2.2.22 |
*.planet.wikimedia.org | http | https | Yes | ECDHE | No | TLS 1.2 | SHA256 | [38] | misc-web |
svn.wikimedia.org | http | https | Yes* (redir) | ECDHE | 1 year | TLS 1.2 | SHA256 ECC | [39] | text |
phabricator.wikimedia.org | http | https | Yes* (1,2) | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [40] | misc-web |
payments.wikimedia.org | http | https | Yes[3] | ECDHE | 180 days | TLS 1.2 | SHA256 | [41] | nginx |
civicrm.wikimedia.org | http | https | Yes | ECDHE | No | TLS 1.2 | SHA256 | [42] | nginx |
frdata.wikimedia.org | http | https | No | ECHDE | No | TLS 1.2 | SHA256 | [43] | nginx |
fundraising.wikimedia.org | http | https | Yes | ECDHE | No | TLS 1.2 | SHA256 | [44] | nginx |
payments-listener.wikimedia.org | http | https | Yes[3] | ECDHE | 180 days | TLS 1.2 | SHA256 | [45] | nginx |
dev.wikimedia.org | http | https | Yes* (redir) | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [46] | text |
annual.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [47] | misc-web |
scholarships.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [48] | misc-web |
servermon.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [49] | misc-web |
dbtree.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [50] | misc-web |
iegreview.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [51] | misc-web |
transparency.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [52] | misc-web |
policy.wikimedia.org | http | https | Yes* | ECDHE | 7 days (1) | TLS 1.2 | SHA256 ECC | [53] | misc-web |
people.wikimedia.org | http | https | Yes* | ECDHE | 1 year (1,2) | TLS 1.2 | SHA256 ECC | [54] | misc-web |
- ↑ I only tested if HTTP redirects to HTTPS on the home pages. But a star (*) means the domain is indeed HTTPS only by looking into the code.
- ↑ cipher suite list: https://raw.githubusercontent.com/wikimedia/operations-puppet/production/modules/wmflib/lib/puppet/parser/functions/ssl_ciphersuite.rb
- ↑ 3.0 3.1 The server does not respond on port 80.
See also
- Done - T55259 - Add Forward Secrecy to all HTTPS sites
- T40516 - Enable HSTS on Wikimedia wikis
- T104681 - HTTPS Plans (tracking / high-level info)
- HTTPS Board
- TLS cipher suite dashboard