- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Wed, 21 Apr 2021 05:30:04 +0200
- To: ietf-http-wg@w3.org
Am 21.04.2021 um 04:03 schrieb Mark Nottingham: > <editor hat on> > > I think we're done processing BCP56bis WGLC feedback, except for two interrelated suggestion/issues and a heads-up about editorial work. > > > ## Requirements for Security > > In <https://www.w3.org/mid/c88944cd-cd75-4050-b95d-4c689ba51106@www.fastmail.com>, Martin asks whether we can make HTTPS a MUST, rather than RECOMMENDED. > > Then, in <https://www.w3.org/mid/77ff1d27-7e06-46db-87ff-6b7d70890f26@www.fastmail.com>, Martin suggests we disallow use of *all* HTTP authentication unless the connection is secured. > ... Martin talked about the Basic and Digest schemes, not HTTP authentication in general... Best regards, Julian
Received on Wednesday, 21 April 2021 03:30:19 UTC