> On Dec 5, 2017, at 14:43, Poul-Henning Kamp <p...@phk.freebsd.dk> wrote: > > -------- > In message <20171205220849.gh9...@gmail.com>, Gordon Tetlow writes: > >> Using this as a reason to not move to HTTPS is a fallacy. We should do >> everything we can to help our end-users get FreeBSD in the most secure >> way. > > The vastly oversold "security" of HTTPS is entirely borrowed from > a confederation of root-CA's which no non-deluded person can ever > seriously trust.
Assertion of identity and encryption in transit are separate issues. I do agree that identity is fundamentally broken with the existing CA system. I’m more interested in preventing tampering of data in transit. HTTPS is an easy way to do that. Gordon _______________________________________________ freebsd-security@freebsd.org mailing list https://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscr...@freebsd.org"
