On Fri, 9 Feb 2018 12:35:25 +0100
> also, default redirect to HTTPS should be advisable
The important thing is using secure cookies for logins. Otherwise SSL
is less secure. It is required if authenticity of page content is
beneficial of course. The performance claims are also fine and dandy if
On Fri, 9 Feb 2018 12:35:25 +0100
> https://security.googleblog.com/2018/02/a-secure-web-is-here-to-stay.html
>
> "Beginning in July 2018 with the release of Chrome 68, Chrome will
> mark all HTTP sites as “not secure”."
^^
HTTP pages!
And they admit the choice of words is p
use
HTTPS.
> Sent: Thursday, February 08, 2018 at 12:37 AM
> From: "Charlie Eddy"
> To: jer...@fuckthensa.nl
> Cc: "Jonathan Thornburg" , misc@openbsd.org
> Subject: Re: OpenBSD Foundation on HTTPS
>
> Hello Jonathan Thornburg,
>
> That is quite simple.
Hello Jonathan Thornburg,
That is quite simple. The post will work.
https://www.ic.gc.ca/app/scr/cc/CorporationsCanada/fdrlCrpDtls.html?corpId=4409612
Regards,
On Wed, Feb 7, 2018 at 6:42 AM, Jeroen wrote:
> With HTTPS, can you be sure that the server isn't comprimised? With or
> without HTTP
As far as I am concerned, HTTPS by itself doesn't do miracles. It
involved more tech. Unless you can hack the global web infra, it's only
possible to change this on a local network. Wouldn't there be more
interesting targets in such situations?
Don't get me wrong, I am not trying to downplay the l
With HTTPS, can you be sure that the server isn't comprimised? With or
without HTTPS, it's always a good idea to check wether the address is
correct (a foundation has to be registered and at other places).
On Wed, 2018-02-07 at 14:40 +0100, Jonathan Thornburg wrote:
> From http://www.openbsdfound
>From http://www.openbsdfoundation.org/donations.html :
> Donations may be made by cheque in CAD/EUR/USD funds to:
>
> The OpenBSD Foundation
> 8101 160 Street
> Edmonton, Alberta, Canada
> T5R 2G9
Without https, how can one verify that that is the correct address?
thank you for providing that email address, case closed as far as I'm
concerned
Whilst that might seem like a fair argument, what would happen if I man
in the middled your request for the http page? I could easily change the
links to point to my malicious site, and with certificates being so easy
to get, it would be relatively easy to make it look authentic as far as
the "you
On 2018-02-06, Daniel Ouellet wrote:
> Come on guys.
>
> If you actually donate and click on any links there you would see it
> bring you to a secure page.
>
> No need to have this one https type really there isn't any information
> you enter on it...
>
> I guess the sand is way more think some pl
"Can I update the value of "hosted_button_id" and
send you to my Paypal account ?"
this
is much cleaner, more logical, more formal, and more sensible than
"No need to have this one https type really there isn't any information
you enter on it..."
On Tue, Feb 6, 2018 at 1:10 PM, Denis Fondras w
> If you actually donate and click on any links there you would see it
> bring you to a secure page.
>
But is this the right link ? Can I update the value of "hosted_button_id" and
send you to my Paypal account ?
Denis
do something like this? we live in a perfect world
>> without bad people! yay pink ponies!
>>
>> troll off
>>
>>
>>> Sent: Tuesday, February 06, 2018 at 12:23 PM
>>> From: "Ian Sutton"
>>> To: "Hess THR"
>>> Cc: "m
at 12:23 PM
> > From: "Ian Sutton"
> > To: "Hess THR"
> > Cc: "misc@OpenBSD.org"
> > Subject: Re: OpenBSD Foundation on HTTPS
> >
> > Hi,
> >
> > There is no need. There is nothing secret on those web servers, there
>> Sent: Friday, December 15, 2017 at 12:11 PM
>> From: "Vivek Vinod"
>> To: "Hess THR"
>> Subject: Re: OpenBSD Foundation on HTTPS
>>
>> 1) Why do you want https support?
>> 2) Most websites use IIS, Apache or Nginx. Maybe you should sugge
? we live in a perfect world without
bad people! yay pink ponies!
troll off
> Sent: Tuesday, February 06, 2018 at 12:23 PM
> From: "Ian Sutton"
> To: "Hess THR"
> Cc: "misc@OpenBSD.org"
> Subject: Re: OpenBSD Foundation on HTTPS
>
> Hi,
>
n the base?
> Sent: Friday, December 15, 2017 at 12:11 PM
> From: "Vivek Vinod"
> To: "Hess THR"
> Subject: Re: OpenBSD Foundation on HTTPS
>
> 1) Why do you want https support?
> 2) Most websites use IIS, Apache or Nginx. Maybe you should suggest we shi
Hello, Just noticed that the: http://www.openbsdfoundation.org/ doesn't
supports HTTPS, while in 2017 Dec, ~70% of the websites does:
https://letsencrypt.org/stats/#percent-pageloads Can we have HTTPS for
the OpenBSD Foundation? Which Official OpenBSD related domain hasn't got
HTTPS yet? I whish yo
18 matches
Mail list logo
