[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kfm-devel
Subject:    Re: TLS upgrades
From:       "William A. Rowe, Jr." <wrowe () rowe-clan ! net>
Date:       2007-07-24 14:48:27
Message-ID: 46A6113B.4070004 () rowe-clan ! net
[Download RAW message or body]

Josef Spillner wrote:
> Funny deadlock:
> - HTTP 1.1+TLS upgrade is supported by Apache httpd now (using SSLEngine 
> optional), but untested since "no browser supports it"
> - it's also supported by Konqueror by means of kio_http, but untested 
> since "there's no server to test"
> 
> Is anyone still working on this feature?


Browser-wise, not that I'm aware of.  Because it's negotiated, nobody has
develped the UI-solution to represent the availability and optional nature
of the interface.

If server insists on it, there is still the lingering question of seeing
'strong lock' secured labels while presenting an http: (not https:) URL.
It cannot be represented as https: as that is an implicit port 443:.

Many network devices do support TLS upgrade, such as Novell Netware
printers.

Bill

[prev in list] [next in list] [prev in thread] [next in thread]