http subversion URLs should be discontinued in favor of https URLs
Poul-Henning Kamp
phk at phk.freebsd.dk
Tue Dec 5 22:44:02 UTC 2017
--------
In message <20171205220849.GH9701 at gmail.com>, Gordon Tetlow writes:
>Using this as a reason to not move to HTTPS is a fallacy. We should do
>everything we can to help our end-users get FreeBSD in the most secure
>way.
The vastly oversold "security" of HTTPS is entirely borrowed from
a confederation of root-CA's which no non-deluded person can ever
seriously trust.
Only if you trust *everybody* on this list, is HTTPS "secure":
grep '^ *Subject:' /usr/local/share/certs/ca-root-nss.crt
And as if that delusion wasn't bad enough, the misguided and
simple-minded IT-liberalistic "Encrypt everything" campaign is,
100% as predicted, pushing governments to neuter encryption in
order to keep the court systems working.
"IETF and what army?"
--
Poul-Henning Kamp | UNIX since Zilog Zeus 3.20
phk at FreeBSD.ORG | TCP/IP since RFC 956
FreeBSD committer | BSD since 4.3-tahoe
Never attribute to malice what can adequately be explained by incompetence.
More information about the freebsd-security
mailing list