> and the thread Subject is spot on. How about
War on mixed content - why not? Warnings have been popping up for as long as I can remember so the likely hood is that if they haven't fixed the site, they have chosen not to. I could understand an argument that the warning could have changed to a "this will be blocked in future" (a deprecation warning) but other than that I think this is the right thing even if it can be a little annoying very occasionally for the time being. I don't believe in ssl everywhere at all. It is an answer to a problem that should be tackled directly and could make things worse, privacy wise, DOS wise and energy usage wise etc.. Heck Xombrero has taken the spot from firefox as my favourite browser today and I hate to think how much energy would be saved if everyone could or was using it (brill but not the easiest to use at first but the easiest once mastered or if you use vi and doesn't run on Windows). There is no need for mixed content and why would you use plain text and ssl at the same time, a user only makes one request at a time and web pages are tiny. Really a site should only come from one domain too. -- _______________________________________________________________________ 'Write programs that do one thing and do it well. Write programs to work together. Write programs to handle text streams, because that is a universal interface' (Doug McIlroy) _______________________________________________________________________ _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
