[gopher] Tor for Gopher

simple at sdf.org simple at sdf.org
Wed Mar 1 11:42:29 UTC 2017


I think DNSSEC was designed for this very issue.  DNSSEC + SSL ought to
do the trick, no?

Jeff W.

Mateusz Viste <mateusz at nospam.viste.fr> wrote:
> ..
> Shortly said, if we assume that the entire CA business is worthless, then 
> so is SSL.
>
> On Tue, 28 Feb 2017 23:15:54 -0800, Bradley D. Thornton wrote:
> > ..
> > SSL ensures that you have an encrypted connection, and I am a proponent
> > of the notion that all HTTP traffic should take advantage of this,
> > especially in light of the fact that search engines now routinely index
> > secure content, and SNI is the way of the name based virtual hosting in
> > the connnectionless oriented browsing environment.
> > 
> > If everyone would just once and for all realize that SSL never has
> > verified that you are talking to who the cert says you're talking to,
> > and only that you are talking to an end point via and encrypted session,
> > there would be much less hype over whether everyone should be able to
> > have encrypted communications for free.



More information about the Gopher-Project mailing list