--------
In message <[email protected]>, Gordon Tetlow writes:
>Using this as a reason to not move to HTTPS is a fallacy. We should do
>everything we can to help our end-users get FreeBSD in the most secure
>way.
The vastly oversold "security" of HTTPS is entirely borrowed from
a confederation of root-CA's which no non-deluded person can ever
seriously trust.
Only if you trust *everybody* on this list, is HTTPS "secure":
grep '^ *Subject:' /usr/local/share/certs/ca-root-nss.crt
And as if that delusion wasn't bad enough, the misguided and
simple-minded IT-liberalistic "Encrypt everything" campaign is,
100% as predicted, pushing governments to neuter encryption in
order to keep the court systems working.
"IETF and what army?"
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
[email protected] | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
_______________________________________________
[email protected] mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "[email protected]"
