W3C home > Mailing lists > Public > www-tag@w3.org > August 2014

Re: The ability to automatically upgrade a reference to HTTPS from HTTP

From: Paul Libbrecht <paul@hoplahup.net>
Date: Fri, 29 Aug 2014 08:43:53 +0200
Cc: jose.kahan@w3.org, Tim Berners-Lee <timbl@w3.org>, Public TAG List <www-tag@w3.org>, SW-forum Web <semantic-web@w3.org>
Message-Id: <9B6BD64D-5E30-4612-989A-D29B53B96152@hoplahup.net>
To: Noah Mendelsohn <nrm@arcanedomain.com>
On 28 août 2014, at 18:29, Noah Mendelsohn <nrm@arcanedomain.com> wrote:
>  Proxy caches don't get https traffic in the clear, so I presume they can't cache it at all, right?

Transparent proxy caches do not get these: those such as hotel networks or public wifi who always sniff http so as to redirect you to the agreement or payment website if your computer is not registered. This also applies to much of the 3G network I've seen thus far (tested in Europe and USA).

Proxies that are configured (e.g. office-controlled computers, school computer labs) can get both http and https traffic and can cache both and do the equation.

As a matter of safety, I do not know at all how and when implementors of such proxies or other http-clients can decide on doing this equation, but it seems dangerous unless there is a formal specification to mention this (e.g. based on an http redirect code that would witness the equation).

paul
Received on Friday, 29 August 2014 06:44:27 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 15:33:26 UTC