On 06/22/2014 12:14 PM, intrigeri wrote: > Hi, > > jvoisin wrote (22 Jun 2014 10:02:50 GMT) : >> So, the only case where this could be useful is clear-text http, which >> you shouldn't use over Tor anyway. > > That's a very strong statement, that I won't discuss in the general > case (cleartext HTTP vs. CA cartel, blah). You can have https without a certificate signed by a cartel CA ;) > > This is Tails. Everything goes through Tor by default, so what you're > telling here is basically "don't use Tails for cleartext HTTP". So I'm > curious: do you really think we should limit the supported Tails > usecases that far? I think that people that are techy enough to use curl in Tails are knowing what they're doing when they use cleartext HTTP, and are (hopefully) trying to avoid using it.
I don't think it worth reducing the (small) anonymity set for this usage. > > Cheers, > _______________________________________________ Tails-dev mailing list [email protected] https://mailman.boum.org/listinfo/tails-dev To unsubscribe from this list, send an empty email to [email protected].
