- From: Maxthon Chan <xcvista@me.com>
- Date: Wed, 01 Apr 2015 02:37:32 +0800
- To: Willy Tarreau <w@1wt.eu>
- Cc: "Walter H." <Walter.H@mathemainzel.info>, ietf-http-wg@w3.org
Seem relevant, so I am just throwing it out here: How about making TLS mandatory, and the URL scheme “http:” and “https:” only determines whether the certificate is checked or not? Also since HTTP/1.1 have a protocol upgrade mechanism, how about using that as a stepstone of HTTP/2 (that is, all sessions is initiated as HTTP/1.1, and a HTTP/2-capable server tells the client it can start using HTTP/2 features in the resulting HTTP/1.1 header and further communications is HTTP/2) so HTTP/2 will not depend on TLS NPN feature (that is, HTTP/1.1 protocol upgrade is used as a makeshift NPN) > On Apr 1, 2015, at 02:28, Willy Tarreau <w@1wt.eu> wrote: > > On Tue, Mar 31, 2015 at 08:27:05PM +0200, Walter H. wrote: >> On 31.03.2015 13:47, Willy Tarreau wrote: >>> >>> ..., all of the messages I've read from Mr >>> "H." are quite confusing to me and talk about things totally unrelated >>> to TLS (eg: advertising etc) to the point that I'm now considering this >>> thread as rant or pollution. >> then I don't need to write anything to clarify ... >>> At least I don't understand the intent nor >>> what improvement is suggested here :-/ >> your problem ... > > Given that you're saying yourself that others don't understand, I'm not > sure I'm the common point between them... > > Willy > >
Received on Tuesday, 31 March 2015 18:38:20 UTC