It's really gonna suck for the Dave Winer's of the world when they find out that @mozilla is pushing to deprecate insecure HTTP even harder than we are. https://twitter.com/fugueish/status/1006665895601553408 …
-
-
I have had an http site MITM'd maybe 5 times in 20 years. I get noxious crap injected by javascript adtech pretty much every day. I know you care about both, but "anti-vaxxers" is not a helpful framing.
-
That you know of. I mean, how often did you connect over insecure wifi? Or a terrible (perhaps pwn'd) gateway?
- 11 more replies
New conversation -
-
-
To be fair, you can't just add a certificate to most static sites and have it work unmodified. Mixed content blocking is a thing and upgrade insecure requests is not a complete solution. Testing and fixing it has costs well above adding Let's Encrypt to your DNS cron job.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Ooc, do you have examples of malware because of no https?
-
How many of these articles over the years would you like links to: https://arstechnica.com/tech-policy/2013/04/how-a-banner-ad-for-hs-ok/ … Cause there are a lot
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.