Re: Moving forward on improving HTTP's security

Le Jeu 14 novembre 2013 21:36, Roberto Peon a écrit :

> If you need a MITM to feel or be safe, then it is absolutely clear that
> you will deploy one.

I only need a MITM to feel or be safe if browsers insist their mission is
to surrender control of my computers to random web sites and insist on
torpedoing any control system I may wish to deploy on my network to
protect my users (my users, not theirs, because *I* have legal obligations
towards them, not random web sites on the other side of earth of browser
developers)

And I didn't need MITM in http 1.1 that this workgroup charter said it is
tasked to replace, before people decided to embark on wild crusades
against "pervasive surveillance" when every public data fact so far
indicates this "pervasive surveillance" occurs at endpoints and no
protocol change will have any effect on it.

>Having thought about and worried about the problem and
> even proposed a draft about it (exproxy),

And that was much appreciated thank you

-- 
Nicolas Mailhot

Received on Friday, 15 November 2013 06:11:11 UTC