W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2015

Re: SSL/TLS everywhere fail

From: Adrien de Croy <adrien@qbik.com>
Date: Fri, 04 Dec 2015 04:18:19 +0000
To: "Mike Belshe" <mike@belshe.com>, "httpbis mailing list" <ietf-http-wg@w3.org>
Message-Id: <emac0d3674-3ae9-44ec-85ac-b2b629280667@bodybag>
Actually this deserves another response

------ Original Message ------
From: "Mike Belshe" <mike@belshe.com>

>
>One thing never changes:  the only people that don't want security are 
>those peddling archaic proxy products that don't work in the face of 
>encryption....
>
This is wrong on all counts

We DO want security.  We just don't want the appearance of security 
which actually results in less security, which is what you are peddling 
and which we warned about all along.

Also proxies DO work in the face of encryption.  They have had to, and 
this is part of the arms race problem.

You're happy to make all these decisions for the billions of people, but 
I doubt you would be able to bear the cost of it for them. Or to make 
amends when it turns out that you were wrong.
Received on Friday, 4 December 2015 04:18:52 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:11:40 UTC