https://bugzilla.wikimedia.org/show_bug.cgi?id=47832
--- Comment #17 from Chris Steipp <[email protected]> --- I like to think that if we did enable it, China would mitm the connection and either serve it plaintext inside or spoof the cert. I can't imagine they would want to cut off their users. But I'm not sure if I'm up for playing chicken with them at the moment. Also, one argument I haven't seen on this bug I keep meaning to add is that HTTPS is not just about privacy (even over HTTPS, it's pretty easy to do traffic analysis and guess what article a user is viewing), it's also about integrity. When a user isn't using HTTPS, anyone between the user and us can make the site say or not say whatever they like. For that reason, I think we owe it to our anons to try and aim for everyone using HTTPS, even if it's in a distant future. -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
