Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the http protocol be completely banned or blocked internationally and nationally and https be the norm?
Regards, Rony.
On Tue, Aug 7, 2018 at 8:39 AM Rony Bill gnulinuxist@gmail.com wrote:
Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the http protocol be completely banned or blocked internationally and nationally and https be the norm?
http will probably live till the http clients support it. I guess it will die a slow death like telnet did.
On Tue, Aug 7, 2018, 1:49 PM Anurag gnurag@gmail.com wrote
Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the
http
protocol be completely banned or blocked internationally and nationally
and
https be the norm?
http will probably live till the http clients support it. I guess it will die a slow death like telnet did.
Can't the authorities ban it, like port 25 was blocked for smtp?
Regards, Rony.
--
On Tue, 2018-08-07 at 14:32 +0530, Rony Bill wrote:
Can't the authorities ban it, like port 25 was blocked for smtp?
Port 25 is still the official port for SMTP (MTA).
On Tue, Aug 7, 2018 at 2:32 PM Rony Bill gnulinuxist@gmail.com wrote:
On Tue, Aug 7, 2018, 1:49 PM Anurag gnurag@gmail.com wrote
Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the
http
protocol be completely banned or blocked internationally and nationally
and
https be the norm?
http will probably live till the http clients support it. I guess it will die a slow death like telnet did.
Can't the authorities ban it, like port 25 was blocked for smtp?
Dictators can and do block everything. This is where projects like https://torproject.org comes handy to access an open web.
Kushal
On Tue, Aug 7, 2018 at 4:02 AM, Rony Bill gnulinuxist@gmail.com wrote:
With http being insecure and a magnet for injected ads, shouldn't the
http
protocol be completely banned or blocked internationally and nationally
and
https be the norm?
It's up to the site administrators. With Letsencrypt free cert, the monetary reason is gone. It is common practice to redirect HTTP to HTTPS but still the site owner's prerogative.
Can't the authorities ban it, like port 25 was blocked for smtp?
It's been discontinued for MUA to SMTP relay server replaced by 587. Port 25 is still the port for SMTP server to server.
-- Arun Khan
On Tue, Aug 7, 2018 at 2:32 PM Rony Bill gnulinuxist@gmail.com wrote:
On Tue, Aug 7, 2018, 1:49 PM Anurag gnurag@gmail.com wrote
Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the
http
protocol be completely banned or blocked internationally and nationally
and
https be the norm?
http will probably live till the http clients support it. I guess it will die a slow death like telnet did.
Can't the authorities ban it, like port 25 was blocked for smtp?
The authorities shouldn't ban arbitrary ports. With Net Neutrality implemented in India, the authorities can't shape the internet this way.
On Wed, Aug 8, 2018, 1:24 PM Anurag gnurag@gmail.com wrote:
On Tue, Aug 7, 2018 at 2:32 PM Rony Bill gnulinuxist@gmail.com wrote:
On Tue, Aug 7, 2018, 1:49 PM Anurag gnurag@gmail.com wrote
Dear Friends,
With http being insecure and a magnet for injected ads, shouldn't the
http
protocol be completely banned or blocked internationally and
nationally
and
https be the norm?
http will probably live till the http clients support it. I guess it
will
die a slow death like telnet did.
Can't the authorities ban it, like port 25 was blocked for smtp?
The authorities shouldn't ban arbitrary ports. With Net Neutrality implemented in India, the authorities can't shape the internet this way. --
At least the Government can issue advisories or public announcements to tell the public to switch to https.
Regards, Rony.
On Wed, Aug 8, 2018 at 2:20 PM Rony Bill gnulinuxist@gmail.com wrote:
The authorities shouldn't ban arbitrary ports. With Net Neutrality implemented in India, the authorities can't shape the internet this way. --
At least the Government can issue advisories or public announcements to tell the public to switch to https.
I personally use HTTPS Everywhere [0] in the browser that has a switch to block all unencrypted requests. However, I'm not sure if this is something that the legislature should regulate.
[0] https://www.eff.org/https-everywhere
Anurag
-
Anurag -
Arun Khan -
Joe Steeve -
Kushal Das -
Rony Bill