W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2016

Re: HTTP/2 - Unintended consequences of pseudo-mandatory TLS

From: Daniel Stenberg <daniel@haxx.se>
Date: Sun, 13 Mar 2016 23:56:48 +0100 (CET)
To: Phil Lello <phil@dunlop-lello.uk>
cc: HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <alpine.DEB.2.20.1603132354400.10342@tvnag.unkk.fr>
On Sun, 13 Mar 2016, Phil Lello wrote:

> Whilst I'm not certain that this is the right forum to address browser 
> support for h2c / non-TLS HTTP/2, I'd like to state my concerns over the de 
> facto requirement for TLS.

Most of the things that can be said about this subject were iterated about 14 
times each in the "SSL/TLS everywhere fail" discussion in December:

https://lists.w3.org/Archives/Public/ietf-http-wg/2015OctDec/thread.html#msg313

-- 

  / daniel.haxx.se
Received on Sunday, 13 March 2016 22:57:15 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 22 March 2016 12:47:11 UTC