On 2015-05-05 4:59 AM, sn...@arbor.net wrote:
Encryption should be activated only after BOTH parties have mutually
authenticated.
Why establish an encrypted transport to an unknown attacker?
A web you have to uniquely identify yourself to participate in is really
not open or free for an awful lot of people. And if we had a reliable
way of identifying attacks and attackers at all, much less in some
actionable way, this would all be a much simpler problem.
It is, just as one example among thousands, impossible to know if your
wifi is being sniffed or not.
- mhoye
_______________________________________________
dev-platform mailing list
dev-platform@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-platform
