W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2013

Re: What will incentivize deployment of explicit proxies?

From: Yoav Nir <synp71@live.com>
Date: Tue, 3 Dec 2013 23:20:41 +0200
Message-ID: <BLU0-SMTP3212FDE25BA6643225EE77EB1D50@phx.gbl>
To: "William Chan (陈智昌)" <willchan@chromium.org>
CC: Nicolas Mailhot <nicolas.mailhot@laposte.net>, Roberto Peon <grmocg@gmail.com>, HTTP Working Group <ietf-http-wg@w3.org>
On 3/12/13 8:53 PM, William Chan (陈智昌) wrote:
> 5. Prompt the user:
>         Accept using gateway-name to access http://awebsite.com/ and
>         other web
>         sites in ingoing-http2-mode ?
>         [check reformatted access rules] [see help page] [see certificate]
>            [ ] Prompt for other web sites and security modes
>            ( ) only for this session ( ) all the time
>            (*) only from here        ( ) everywhere
>                                                   [Yes] [No]
>     My mother would call me if she got that. My daughter would quickly
>     learn that clicking "Yes" after unchecking the "Prompt" box and
>     selecting "everywhere" makes the prompt go away and not come back.
>     IOW it would make the Internet work.
> <pushback>
> I can probably expect to be tarred and feathered by my security team 
> if I tell them we need to put up a UI asking the end user to make a 
> decision about security :)
> </pushback>
Especially if you ask the end user at the worst possible time - when 
you're in their way to finish something they've already begun. So I've 
decided to read my gmail, and I typed "mail.google.com", and I'm 
expecting my message list to appear in a second. And now you tell me to 
stop everything and answer some question about some proxy?

Received on Tuesday, 3 December 2013 21:21:13 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:20 UTC