I vaguely remember that there was an Internet-Draft about declaring,
in the DNS, that a HTTP server MUST be accessed only by HTTPS. But I
cannot find it, either with the Datatracker or with Google. Any
pointer?
(I know about draft-ietf-websec-strict-transport-sec, which is a HTTP
solution, I'm
On Mon, Nov 19, 2012 at 09:05:43AM -0500,
Scott Schmit i.g...@comcast.net wrote
a message of 119 lines which said:
Perhaps you're thinking of this expired draft: draft-hoffman-server-has-tls?
Exactly! Thanks. This I-D is not HTTPS-specific, which may explain why
I did not find it.
Someone
On 11/19/2012 9:41 AM, Stephane Bortzmeyer wrote:
On Mon, Nov 19, 2012 at 09:05:43AM -0500,
Scott Schmit i.g...@comcast.net wrote
a message of 119 lines which said:
Perhaps you're thinking of this expired draft: draft-hoffman-server-has-tls?
Exactly! Thanks. This I-D is not
On Mon, 19 Nov 2012, Paul Hoffman wrote:
Perhaps you're thinking of this expired draft: draft-hoffman-server-has-tls?
Exactly! Thanks. This I-D is not HTTPS-specific, which may explain why
I did not find it.
Y'all forget that think that security is valuable for things other than the
web.