http subversion URLs should be discontinued in favor of https URLs
Yuri
yuri at rawbw.com
Tue Dec 5 21:13:27 UTC 2017
On 12/05/17 13:04, Eugene Grosbein wrote:
> It is illusion that https is more secure than unencrypted http in a sense of MITM
> just because of encryption, it is not.
It *is* more secure. In order to break it, you have to have compromized
https authorities. Some state actors have plausibly done this. http, on
the contrary, can be altered by anybody who has access to the wire,
which is generally a much wider set.
Yuri
More information about the freebsd-security
mailing list