I read the Cloudflare section on middleboxes and I wonder if it was really
a good idea for them to go making changes to allow for existing boxes to do
that. They are not legitimate parties to a TLS connection and browsers and
websites should not have to change how they communicate to deal with
I'm no expert on TLS 1.3, but I thought that other folks on Wikitech-l
might be interested in the industry news about the subject. The relevant
WMF Phabricator task is https://phabricator.wikimedia.org/T170567.
Articles:
* "An Overview of TLS 1.3 – Faster and More Secure":