IETF Logo Mail Archive

Re: Port 80 deprecation

Adrien de Croy <adrien@qbik.com> Mon, 07 June 2021 03:42 UTC

Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DA0023A342D for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 6 Jun 2021 20:42:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.649
X-Spam-Level:
X-Spam-Status: No, score=-7.649 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HEADER_FROM_DIFFERENT_DOMAINS=0.249, MAILING_LIST_MULTI=-1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YZKOCRvMiyIs for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 6 Jun 2021 20:42:18 -0700 (PDT)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CBF8B3A342E for <httpbisa-archive-bis2Juki@lists.ietf.org>; Sun, 6 Jun 2021 20:42:18 -0700 (PDT)
Received: from lists by lyra.w3.org with local (Exim 4.92) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1lq66Q-0008AA-VH for ietf-http-wg-dist@listhub.w3.org; Mon, 07 Jun 2021 03:39:04 +0000
Resent-Date: Mon, 07 Jun 2021 03:39:02 +0000
Resent-Message-Id: <E1lq66Q-0008AA-VH@lyra.w3.org>
Received: from titan.w3.org ([128.30.52.76]) by lyra.w3.org with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <adrien@qbik.com>) id 1lq660-00089A-86 for ietf-http-wg@listhub.w3.org; Mon, 07 Jun 2021 03:38:40 +0000
Received: from smtp.qbik.com ([122.56.26.1]) by titan.w3.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from <adrien@qbik.com>) id 1lq65u-0004vW-P7 for ietf-http-wg@w3.org; Mon, 07 Jun 2021 03:38:33 +0000
Received: From [192.168.1.162] (unverified [192.168.1.162]) by SMTP Server [192.168.1.3] (WinGate SMTP Receiver v9.4.2 (Build 6000)) with SMTP id <0002530250@smtp.qbik.com>; Mon, 07 Jun 2021 15:38:14 +1200
From: Adrien de Croy <adrien@qbik.com>
To: Paul Vixie <paul@redbarn.org>
Cc: "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Date: Mon, 07 Jun 2021 03:38:15 +0000
Message-Id: <em77cdcccc-e469-4888-91c2-a84330e7dbd3@bombadil>
In-Reply-To: <20210605180730.zc4reqk7zquu5xen@family.redbarn.org>
References: <41fb81f5-4978-f8da-d0de-7af26cd20e74@gmail.com> <em31279999-b222-49d5-8243-8ec47f667f6e@bombadil> <20210603021542.wjwkk7kq4axoterj@family.redbarn.org> <6fb42e70-2e00-f978-fd59-88ce669e1a91@gmail.com> <20210603040515.qqigadhzrzdbozxu@family.redbarn.org> <20210603114324.GE3909@faui48e.informatik.uni-erlangen.de> <YLswO6umk+WCOXd7@lk-perkele-vii2.locald> <20210605180730.zc4reqk7zquu5xen@family.redbarn.org>
Reply-To: Adrien de Croy <adrien@qbik.com>
User-Agent: eM_Client/8.2.1237.0
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Received-SPF: none client-ip=122.56.26.1; envelope-from=adrien@qbik.com; helo=smtp.qbik.com
X-W3C-Hub-Spam-Status: No, score=-3.9
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_NONE=0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: titan.w3.org 1lq65u-0004vW-P7 6ed8784f2bd6cd5de0d123881d6aae98
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Port 80 deprecation
Archived-At: <https://www.w3.org/mid/em77cdcccc-e469-4888-91c2-a84330e7dbd3@bombadil>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/38857
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

I'm waiting for someone to propose https for accessLocation for OCSP

Then we will have a nice little Gordian knot.

CRL checks also have to use http.


------ Original Message ------
From: "Paul Vixie" <paul@redbarn.org>
To: "Ilari Liusvaara" <ilariliusvaara@welho.com>
Cc: "Toerless Eckert" <tte@cs.fau.de>; "ietf-http-wg@w3.org" 
<ietf-http-wg@w3.org>
Sent: 6/06/2021 6:07:30 am
Subject: Re: Port 80 deprecation

>just be aware that i can't get a "localhost" certificate from an X.509 CA, and
>that the overhead of running an in-house CA just to accomplish this unneccessary
>purpose so that i can encrypt and decrypt data between processes who share a CPU,
>is unthinkable. (the plaintext will be visible inside the process endpoints, so
>there are literally not "on-path advesaries" to protect against.)
>
>for web-style API's inside a system image or hypervisor, TLS will mostly not be
>used. where it is used, global/universal domain names and IP addresses will have
>to be used (to get the X.509 CA system to work), or a private CA will be used.
>this would be all cost no benefit, so, infinitely bad cost:benefit ratio. "nope."
>
>HTTP over TCP/80 is forever. but we can say something else if politically nec'y,
>but that outcome will not change. i've already had to avoid a GoLang SMTP module
>which had no non-SMTPS outbound capability and so could not talk to my private
>PostFix server. the TLS-uber-alles mantra is going to lead to some real trouble.
>
>--
>Paul Vixie
>

v2.23.0 | Report a Bug | By Email