who one <[email protected]> writes: > 70% of the websites in the world uses HTTPS: https://letsencrypt.org/stats/ , > see "Percentage of Web Pages Loaded by Firefox Using HTTPS". If OpenBSD is > security oriented, HTTPS should be de facto.
Letsencrypt is possibly not the best example to cite, since they recently disclosed a vulnerability in one of the protocols they use to validate control of a domain. https://letsencrypt.status.io/pages/incident/55957a99e800baa4470002da/5a55777ed9a9c1024c00b241 https://community.letsencrypt.org/t/2018-01-09-issue-with-tls-sni-01-and-shared-hosting-infrastructure/49996 Allan
