@tqbf - so I removed support for ssl v3 and found that a few users still rely on ancient Safari. As my crypto conscience, what do I do?
-
-
@Pinboard Yeah it is fucked up that pre-Mavs OSX just flunks SSLLabs. Best suggestion I have is: “http://safer.pinboard.in ” for hipsters. -
- Show replies
New conversation -
-
-
@Pinboard Maybe just never redirect these users to HTTPS? -
@pornelski site is all HTTPS (except that login form!). This is a marketing issue rather than a security issue - Show replies
New conversation -
-
-
@Pinboard but for security it's more important to have HSTS and never allow non-HTTPS connections (you've got an unencrypted login form!!!)Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.