Re: Certificate Postfix.org missing?

> On Apr 26, 2021, at 8:25 PM, @lbutlr wrote: > > It's not the 1990s, encryption and decryption overhead of a stream is not an > issue, and is more than made up by the fact that the headers and HTML are > compressed binary blobs instead of sent as plain text. The Postfix web server returns rat

Re: Certificate Postfix.org missing?

On 26 Apr 2021, at 17:05, Jaroslaw Rafa wrote: > Dnia 26.04.2021 o godz. 23:06:49 Allen Coates pisze: >> >> Also, I understand that HTTPS downloads are a touch faster... > > What should be the reason for HTTPS downloads being faster when HTTPS requires > additional encryption and decryption on b

Re: Certificate Postfix.org missing?

Dnia 26.04.2021 o godz. 23:06:49 Allen Coates pisze: > > Also, I understand that HTTPS downloads are a touch faster... What should be the reason for HTTPS downloads being faster when HTTPS requires additional encryption and decryption on both sides, which takes CPU time...? -- Regards, Jarosl

Re: Certificate Postfix.org missing?

On 23/04/2021 07:36, Nicky Thomassen wrote: > With the risk of going off-topic, I do not see the reason for encrypting > everything on the internet from a more practical point of view, as it just > gives > overhead: It takes time to set up and maintain, takes processing power on both > ends, and

Re: Certificate Postfix.org missing?

IL Ka: I believe this is about http://www.postfix.org/ There is no https there. That's the one I meant, sorry I didn't include the www subdomain. I expexted www always to be included as a subdomain name as you can't predict which URL users will type in their browser'

Re: Certificate Postfix.org missing?

Sven Schwedas wrote: On 23.04.21 08:36, Nicky Thomassen wrote: But there is no need for that on a read-only site like Postfix'. In my opinion, anyway. It's only a read-only site as long as there's no man in the middle attack injecting malicious code into the connection. There's too few peop

Re: Certificate Postfix.org missing?

On 4/23/21 9:26 AM, Jaroslaw Rafa wrote: > Dnia 23.04.2021 o godz. 08:27:31 Phil Stracchino pisze: >> On 4/23/21 5:15 AM, Jaroslaw Rafa wrote: >>> However, "thanks" to Google and other >>> big e-mail providers who started to enforce that EVERY email send to them >>> must pass SPF/DMARC check - as a

Re: Certificate Postfix.org missing?

On 4/23/21 9:26 AM, Jaroslaw Rafa wrote: > > All these emails can - and usually do - perfectly pass SPF/DMARC check. So > it is a huge mistake to treat SPF/DMARC as an anti-spam measure and a > positive SPF/DMARC check as an indicator that the message is not spam. It > has nothing to do with the me

Re: Certificate Postfix.org missing?

Dnia 23.04.2021 o godz. 08:27:31 Phil Stracchino pisze: > On 4/23/21 5:15 AM, Jaroslaw Rafa wrote: > > However, "thanks" to Google and other > > big e-mail providers who started to enforce that EVERY email send to them > > must pass SPF/DMARC check - as a method of "antispam protection" (which it >

Re: Certificate Postfix.org missing?

On 4/23/21 5:15 AM, Jaroslaw Rafa wrote: > However, "thanks" to Google and other > big e-mail providers who started to enforce that EVERY email send to them > must pass SPF/DMARC check - as a method of "antispam protection" (which it > isn't, because spammer can have a perfectly valid SPF/DMARC set

Re: Certificate Postfix.org missing?

On 23.04.21 08:36, Nicky Thomassen wrote: But there is no need for that on a read-only site like Postfix'. In my opinion, anyway. It's only a read-only site as long as there's no man in the middle attack injecting malicious code into the connection. There's too few people who disable things l

Re: Certificate Postfix.org missing?

Dnia 23.04.2021 o godz. 08:36:36 Nicky Thomassen pisze: > > With the risk of going off-topic, I do not see the reason for encrypting > everything on the internet from a more practical point of view, as it just > gives > overhead: It takes time to set up and maintain, takes processing power on bot

Re: Certificate Postfix.org missing?

Thu, 22 Apr 2021 19:26:57 +0200 skrev Claus Assmann : > It would be nice if the people who write browsers don't try to force > their kind of "standards" on others... ("but you can get a free cert" > -- what happens when those browsers do not "accept" those free certs > anymore?) With the risk of

Re: Certificate Postfix.org missing?

Another +1 that with vanilla FF v87 + macOS HS, the power is in the hands of the user (where it truly belongs) via a user-knob controlling whether or not FF complains about non-https… - - - On 22 Apr 2021, at 10:51, Richard wrote: Date: Thursday, April 22, 2021 19:26:57 +0200 From: Claus As

Re: Certificate Postfix.org missing?

> Date: Thursday, April 22, 2021 19:26:57 +0200 > From: Claus Assmann > > On Thu, Apr 22, 2021, John Levine wrote: >> Nope, vanilla install on MacOS. > Not sure what your "vanilla install" is... > > Firefox 88.0 on MacOS: > www.postfix.org > and > http://www.postfix.org/ > show the web page ju

Re: Certificate Postfix.org missing?

On Thu, Apr 22, 2021, John Levine wrote: > Nope, vanilla install on MacOS. Not sure what your "vanilla install" is... Firefox 88.0 on MacOS: www.postfix.org and http://www.postfix.org/ show the web page just fine without a problem. It would be nice if the people who write browsers don't try to fo

Re: Certificate Postfix.org missing?

It appears that Jaroslaw Rafa said: >Dnia 22.04.2021 o godz. 12:04:23 John Levine pisze: >> >> Safari and Brave also show a Not Secure warning. Firefox won't connect >> at all unless you manually edit the https to http in the address box. >> Pick your poison. > >My four instances of Firefox on f

Re: Certificate Postfix.org missing?

Dnia 22.04.2021 o godz. 12:04:23 John Levine pisze: > > Safari and Brave also show a Not Secure warning. Firefox won't connect > at all unless you manually edit the https to http in the address box. > Pick your poison. My four instances of Firefox on four different computers (all newest releases

Re: Certificate Postfix.org missing?

It appears that Nick Tait said: >>> Chrome shows it as "Not secure" followed by postfix.com by gracefully >>> hiding the implied www. >> I think you meant to write "by disgracefully hiding...". > >I'm not hearing many reasons to use HTTPS... Just lots of reasons not to >use Chrome? ;-) Safari a

Re: Certificate Postfix.org missing?

On 2021-04-22 04:06, Nick Tait wrote: On 22/04/2021 10:32 am, Gary Smith wrote: -Original Message- From: owner-postfix-us...@postfix.org On Behalf Of Viktor Dukhovni Sent: Wednesday, April 21, 2021 3:02 PM To: Postfix users Subject: Re: Certificate Postfix.org missing? On Apr 21

Re: Certificate Postfix.org missing?

On 22/04/2021 10:32 am, Gary Smith wrote: -Original Message- From: owner-postfix-us...@postfix.org On Behalf Of Viktor Dukhovni Sent: Wednesday, April 21, 2021 3:02 PM To: Postfix users Subject: Re: Certificate Postfix.org missing? On Apr 21, 2021, at 4:34 PM, Gary Smith wrote

Re: Certificate Postfix.org missing?

On 2021-04-21 21:46, @lbutlr wrote: In addition, if you use https and HTTP/2 the site wiil be faster and use less bandwidth. Win, win, win. postfix website could be served with gopher:// if we want to be serious :=)

RE: Certificate Postfix.org missing?

-Original Message- From: owner-postfix-us...@postfix.org On Behalf Of Viktor Dukhovni Sent: Wednesday, April 21, 2021 3:02 PM To: Postfix users Subject: Re: Certificate Postfix.org missing? > On Apr 21, 2021, at 4:34 PM, Gary Smith wrote: > > Chrome shows it as "Not se

Re: Certificate Postfix.org missing?

> On Apr 21, 2021, at 4:34 PM, Gary Smith wrote: > > Chrome shows it as "Not secure" followed by postfix.com by gracefully hiding > the implied www. I think you meant to write "by disgracefully hiding...". -- Viktor.

RE: Certificate Postfix.org missing?

On Wed, Apr 21, 2021 at 10:08:37PM +0200, Jos Chrispijn wrote: > > There is neither a service at port 443, nor a postfix.org website. > > You mean you don't authorize this site to use the Postfix name? > Don't understand, too cryptic. As stated there is no postfix.org website: $ curl http

Re: Certificate Postfix.org missing?

Perhaps I’m wrong here but I think Wietse meant www.postfix.org vs. just postfix.org — as in only the former exists… - - - On 21 Apr 2021, at 13:08, Jos Chrispijn wrote: Wietse Venema: There is neither a service at port 443, nor a postfix.org website. You mean you don't authorize this sit

Re: Certificate Postfix.org missing?

On Wed, Apr 21, 2021 at 10:08:37PM +0200, Jos Chrispijn wrote: > > There is neither a service at port 443, nor a postfix.org website. > > You mean you don't authorize this site to use the Postfix name? > Don't understand, too cryptic. As stated there is no postfix.org website: $ curl http:/

Re: Certificate Postfix.org missing?

Wietse Venema: There is neither a service at port 443, nor a postfix.org website. You mean you don't authorize this site to use the Postfix name? Don't understand, too cryptic. Best, Jos -- With both feet on the ground you can't make any step forward

Re: Certificate Postfix.org missing?

On 21 Apr 2021, at 07:06, IL Ka wrote: > It should be easy to install Letsencrypt certificate there, but I am not sure > if it's worth the effort Since http is starting to be flagged as a security problem and users will be getting (or may already be getting) scary warnings when loading http, I'

Re: Certificate Postfix.org missing?

It appears that IL Ka said: >-=-=-=-=-=- > >> >> >> There is neither a service at port 443, nor a postfix.org website. >> >> >I believe this is about http://www.postfix.org/ >There is no https there. > >It should be easy to install Letsencrypt certificate there, but I am not >sure if it's worth th

Re: Certificate Postfix.org missing?

> > > There is neither a service at port 443, nor a postfix.org website. > > I believe this is about http://www.postfix.org/ There is no https there. It should be easy to install Letsencrypt certificate there, but I am not sure if it's worth the effort

Re: Certificate Postfix.org missing?

Jos Chrispijn: > Might be wrong, but just saw that the https// certificate is missing on > your informatie website? There is neither a service at port 443, nor a postfix.org website. Wietse