Re: [MIX] Require HTTPS scripts to be able to anything HTTP scripts can do. from Daniel Kahn Gillmor on 2015-01-05 (public-webappsec@w3.org from January 2015)

From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Date: Mon, 05 Jan 2015 15:05:35 -0500
To: yan@mit.edu, Tim Berners-Lee <timbl@w3.org>, Brad Hill <hillbrad@gmail.com>
CC: "public-webappsec@w3.org" <public-webappsec@w3.org>
Message-ID: <54AAEE8F.2060609@fifthhorseman.net>

On 01/05/2015 12:33 PM, yan wrote:
> A dramatic example of where the HTTP and HTTPS sites are completely
> semantically different: http://forbes.com vs https://forbes.com/.

wow.  Has anyone talked to the folks at forbes.com to see if they have a
pressing need to do that?

 --dkg

Received on Monday, 5 January 2015 20:05:52 UTC