It turns out that the current Edge browser (under both W10 and W11) does
also have HTTPS-Only Mode, but they really hide it well! Without a
Google search you would never know the hidden option exists:
You first have to specify in the address field
"edge://flags/#edge-automatic-https" and change the status for that Edge
flag from "Default" to "Enabled" and then restart Edge.
Then and only then will you see under Edge "Settings", "Privacy, search,
and services" under "Security" a new option to "Automatically switch to
more secure connections with Automatic HTTPS" which will then be Enabled
but "only on websites likely [not explained] to support HTTPS". You can
choose to change the option to "Always switch from HTTP to HTTPS", which
then makes things work similarly to the Firefox HTTPS-Only Mode.
I understand this is the same code in Edge that is in the Chrome
browser, except under the Chrome browser it is supposedly enabled by
default. On Chrome under Fedora Linux it is "enabled" in the sense that
you can see the option exists, but I still have to explicitly turn on
the visible option to "Always use secure connections".
I like the Edge implementation of this option best, because on the
service.software.ibm.com website it tells you explicitly in the Error
Window without any additional work or mouse clicks that the error seen
with https is that the certificate for the site belongs to
aix.software.ibm.com. The other browsers give an error indication
without explanation so the error appears more serious than it is. I
think most of us can figure out that IBM owns both
service.software.ibm.com and aix.software.ibm.com, so it's just a matter
of mis-configuration, not a rogue phishing website or a
man-in-the-middle compromise. On Firefox, if you know to do it, you can
click to look at certificate details and get the same information, but
that requires more user effort and awareness.
So all three of these major browser support the option, but it has to be
configured on.
Joel C. Ewing
On 11/8/21 03:54, Paul Gilmartin wrote:
On Sun, 7 Nov 2021 23:00:01 -0600, Barbara Nitz wrote:
I notice these are now available from:
<http://service.software.ibm.com/holdata/390holddata.html>
Yes, I found that out when I needed the lastest holddata. I had forgotten to
use IE (as long as we still have that) and had used Edge
Does Edge force the HTTPS-Only Mode that Joel mentioned?
The page above (still) has sample JCL for batch download via FTP.
How might one download an HTTPS resource in batch? Would it
require Co:Z and/or Ported tools (curl)?
Extra credit if one can un-TERSE a ".bin" instance without using a temp data
set.
... (no Firefox, no Chrome here) and it worked. Now I can only hope that IBM
will no longer put ptf documentation inside a ++HOLD DOC as ftp links or as
links to public data stores. IE will go away here soon and access to data
stores gets blocked every time.
?
What's a "data store"? Will downloads of HTTPS resources be prohibited?
What about ShopZ and RECEIVE ORDER?
-- gil
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
--
Joel C. Ewing
----------------------------------------------------------------------
For IBM-MAIN subscribe / signoff / archive access instructions,
send email to [email protected] with the message: INFO IBM-MAIN
