Re: HTTP 2.0 and a Faster, more Mobile-friendly web

In message <>, patrick mcmanus writes:

>I mean that HTTP/2 must be secure against (at least) passive 
>eavesdropping attacks at all times. 

Pardon me for being a bit blunt:   You and what army ?

I can understand if you insist that _your_ website can always
be protected if you desire that.

But I utterly fail to see what mandate you have to insist that some
random 3rd party must protect their website at all times, countrary
to their own wishes, and in particular when they may be legally
prevented from doing so by applicable regulations.

Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

Received on Monday, 30 July 2012 15:21:50 UTC