Re: Fwd: Call for Adoption: draft-song-dns-wireformat-http

In our customer base, the biggest driver to deploy MitM is the refusal 
of browsers to display block pages from denied CONNECT requests.

------ Original Message ------
From: "Poul-Henning Kamp" <>
To: "Patrick McManus" <>
Cc: "tjw ietf" <>; "HTTP Working Group" 
Sent: 4/08/2016 2:25:44 AM
Subject: Re: Fwd: Call for Adoption: draft-song-dns-wireformat-http

>In message 
>Patrick McManus writes:
>>of course, IP-over-DNS is a typical desperate tunnel of last result to 
>>https.. combined with dns over h2 that could give you
>>I'm sure that would be totally fine from a congestion and flow control 
>>pov :(
>It would be *so* much more productive to try to tackle these problems
>as the political human-rights issues they are, than stacking boxed 
>and higher trying to cross over the walls people erect.
>The one sure result from tunnelling more and more through HTTPS is that
>HTTPS will be MiTM'd and blocked more and more.
>Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
>phk@FreeBSD.ORG         | TCP/IP since RFC 956
>FreeBSD committer       | BSD since 4.3-tahoe
>Never attribute to malice what can adequately be explained by 

Received on Wednesday, 3 August 2016 21:59:29 UTC