RFC1918 + localhost

we need to forget about using this as a demarcation for allowability of 
plaintext or not.

there are PLENTY of ISPs allocating private addresses to customers, many 
on effectively broadcast segments (e.g. cable).

There are also plenty of public servers (e.g. on the public internet) 
that require plaintext access (e.g. CRL and OCSP servers for starters).

So I don't think it's useful to arbitrarily compartmentalise the 
plaintext vs encrypted web like that.  Or even at all.  I believe it 
should be up to choice.


Received on Tuesday, 19 November 2013 19:48:59 UTC