NICE! Mozilla just declared that they too intend to deprecate plain HTTP and require HTTPS for most web features:https://groups.google.com/forum/#!topic/mozilla.dev.platform/xaGffxAM-hs …
-
-
Replying to @konklone
@konklone@RichFelker Nice? Encryption is a good thing, but choice is an even better thing. Encourage HTTPS, don't deprecate HTTP.1 reply 0 retweets 0 likes -
Replying to @laurentbercot
@laurentbercot@konklone Yeah, it's nice for users to have a choice not to fall victim to ad/malware-injecting MITM proxies.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@laurentbercot@konklone Deprecating HTTP is the only solution to captive portals and malicious APs/ISPs that alter traffic.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@RichFelker@konklone No, *choosing* HTTPS is a solution that works as well. And making it the default, for non-security-conscious users.1 reply 0 retweets 0 likes -
Replying to @laurentbercot
@laurentbercot@konklone Users can't choose HTTPS if sites don't offer it. Most won't as long as HTTP is not deprecated by browsers.1 reply 0 retweets 0 likes -
Replying to @RichFelker
@RichFelker@konklone For good reason. HTTPS infrastructure is currently depending on commercial root CAs; trust has to be bought.2 replies 0 retweets 0 likes -
Replying to @laurentbercot
@RichFelker@konklone I can't support HTTP deprecation until we've established a sane model of trust for HTTPS certificates.2 replies 0 retweets 0 likes
@laurentbercot @konklone While I agree with your political goal, users' safety can't be held hostage for a political goal.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.