[prev in list] [next in list] [prev in thread] [next in thread]
List: cap-talk
Subject: Re: [cap-talk] Rant on HTTPS everywhere
From: Ben Laurie <benl () google ! com>
Date: 2015-01-08 21:59:13
Message-ID: CABrd9SR3p0RTYbG2mea5bbD39uVjnP3cJ7eFgYDuSxxfi4P=GA () mail ! gmail ! com
[Download RAW message or body]
On 8 January 2015 at 09:04, Rob Meijer <rmeijer@xs4all.nl> wrote:
> I think some on this list might find my rant on the HTTPS Everywhere thing
> an interesting read:
>
> http://minorfs.wordpress.com/2015/01/07/why-https-everywhere-is-a-horrible-idea-for-now/
>
> I'm pretty sure many of you won't agree with my conclusions here. I've had
> discussions on this subject enough to know many people will agree with the
> validity of my arguments yet very few are ready to agree with the IMHO
> inevitable conclusions we should draw from those arguments.
Two things:
1. Certificate Transparency. Check it out.
2. DANE: guess what? Registries and registrars are no better than CAs.
In fact, quite a lot worse.
In short: I get the problem. I don't see easy answers.
_______________________________________________
cap-talk mailing list
cap-talk@mail.eros-os.org
http://www.eros-os.org/mailman/listinfo/cap-talk
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic