Re: The ability to automatically upgrade a reference to HTTPS from HTTP

On 28 août 2014, at 18:29, Noah Mendelsohn <nrm@arcanedomain.com> wrote:
>  Proxy caches don't get https traffic in the clear, so I presume they can't cache it at all, right?

Transparent proxy caches do not get these: those such as hotel networks or public wifi who always sniff http so as to redirect you to the agreement or payment website if your computer is not registered. This also applies to much of the 3G network I've seen thus far (tested in Europe and USA).

Proxies that are configured (e.g. office-controlled computers, school computer labs) can get both http and https traffic and can cache both and do the equation.

As a matter of safety, I do not know at all how and when implementors of such proxies or other http-clients can decide on doing this equation, but it seems dangerous unless there is a formal specification to mention this (e.g. based on an http redirect code that would witness the equation).

paul

Received on Friday, 29 August 2014 06:44:29 UTC