Slower HTTP for privacy
"Soni L." <fakedme+http@gmail.com> Sun, 29 January 2023 14:48 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4BA06C151549 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 29 Jan 2023 06:48:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.751
X-Spam-Level:
X-Spam-Status: No, score=-2.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.25, MAILING_LIST_MULTI=-1, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TiFumLGSl0l6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Sun, 29 Jan 2023 06:48:46 -0800 (PST)
Received: from lyra.w3.org (lyra.w3.org [128.30.52.18]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 233B6C151547 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Sun, 29 Jan 2023 06:48:45 -0800 (PST)
Received: from lists by lyra.w3.org with local (Exim 4.94.2) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1pM8wd-000lys-OB for ietf-http-wg-dist@listhub.w3.org; Sun, 29 Jan 2023 14:46:11 +0000
Resent-Date: Sun, 29 Jan 2023 14:46:11 +0000
Resent-Message-Id: <E1pM8wd-000lys-OB@lyra.w3.org>
Received: from mimas.w3.org ([128.30.52.79]) by lyra.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.94.2) (envelope-from <fakedme+http@gmail.com>) id 1pM8wb-000lxa-Hl for ietf-http-wg@listhub.w3.org; Sun, 29 Jan 2023 14:46:09 +0000
Received: from mail-ot1-x32a.google.com ([2607:f8b0:4864:20::32a]) by mimas.w3.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (Exim 4.94.2) (envelope-from <fakedme+http@gmail.com>) id 1pM8wZ-00HAUJ-Ml for ietf-http-wg@w3.org; Sun, 29 Jan 2023 14:46:09 +0000
Received: by mail-ot1-x32a.google.com with SMTP id 70-20020a9d084c000000b0068bccf754f1so382038oty.7 for <ietf-http-wg@w3.org>; Sun, 29 Jan 2023 06:46:07 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=content-transfer-encoding:subject:from:to:content-language :user-agent:mime-version:date:message-id:sender:from:to:cc:subject :date:message-id:reply-to; bh=tPIAkpOXn4f7l8ZZTbw21nf31u+CbRQ9S4iEMLcmGwc=; b=ZctEsD2FwYe8htAxVqCoDtQWljmbU2TOvav6t6CafNAD35BG+kdox+E2lgfkk0eGlE jB6oDC/BJYyb/AY0K3Ax2rJnbfduoS181M63qetYy+tD8lMycR/5IyPvk2pAr3Lr/Eah YGIHMASOcqyc4qivS/d0DOPr5IHIXg5HFt4x0BmHKbLfzGoDVksu0iBcXfiCM5ty2odn kgn1jIarl1F87GpLT0/M+0QrkZRWEdl2mGFjhjRw6Kg5lM2owora6QADjPFj1zKVLe41 2ypof2XYykU95bTtmSdzeWvNsyWmI4wLk11uUMMn0hewjV46jEJmsoaHuyCr89TOQ3O2 Iibg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=content-transfer-encoding:subject:from:to:content-language :user-agent:mime-version:date:message-id:sender:x-gm-message-state :from:to:cc:subject:date:message-id:reply-to; bh=tPIAkpOXn4f7l8ZZTbw21nf31u+CbRQ9S4iEMLcmGwc=; b=6TCMmxgATdNgPYGk6ZVXKZt2rfWVhXLvQxpg7nJpmoxyPFEtgDGHMX5ekFBQRuU0qD SwpyJEeZ98Sbk4jS/H2JOAvMkMX6RTWqQ9o8kzz2Oh6ANJ75PcAEoJuRPjqgFtK47pdV 21TLQqBWDvfArT84PkjSzzxS9xL9PsyuzoZyNGfKNc6c8cKdqJZeESfhdt8RvTD58BYV EH0evVY0/bgJCqghvuyIcRpvZUZOUJo72hbo7i1BQsZMHiU+4yr8Eua/yhLQQW025ILb CUfXYuCbjlHCwHhMs8s5v+kP1ZPeHFRb3Uf8l5U/gNlsbD+jhVODqn6SX1Wx94lRfDe/ wVFA==
X-Gm-Message-State: AO0yUKXJQU+06qZE41WhIY5oH8/EV6/6JWeCm3/H7X+KI8gn+waL7Kaw YE8cU/yu2VgSXByZNGc48+40rL1eJPc=
X-Google-Smtp-Source: AK7set/a2UXSPl477p3p5kUcSYOdJqtcq33qQZg80/HIJbYmamoycZ9UAXVW/Pm2l0+sHIj6Je8AGQ==
X-Received: by 2002:a9d:1b4b:0:b0:68a:bc9d:f245 with SMTP id l69-20020a9d1b4b000000b0068abc9df245mr6080771otl.6.1675003556638; Sun, 29 Jan 2023 06:45:56 -0800 (PST)
Received: from ?IPV6:2804:431:cfcc:25b6::536f:6e69? ([2804:431:cfcc:25b6::536f:6e69]) by smtp.googlemail.com with ESMTPSA id j14-20020a056830014e00b0068bce2c3e9esm533180otp.14.2023.01.29.06.45.55 for <ietf-http-wg@w3.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Sun, 29 Jan 2023 06:45:56 -0800 (PST)
Sender: "Soni L." <fakedme@gmail.com>
Message-ID: <16133a2f-5fbe-0f7f-c2ea-e83d20fdb3cc@gmail.com>
Date: Sun, 29 Jan 2023 11:45:53 -0300
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Thunderbird/102.7.0
Content-Language: en-US
To: HTTP Working Group <ietf-http-wg@w3.org>
From: "Soni L." <fakedme+http@gmail.com>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Received-SPF: pass client-ip=2607:f8b0:4864:20::32a; envelope-from=fakedme+http@gmail.com; helo=mail-ot1-x32a.google.com
X-W3C-Hub-DKIM-Status: validation passed: (address=fakedme+http@gmail.com domain=gmail.com), signature is good
X-W3C-Hub-Spam-Status: No, score=-4.1
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: mimas.w3.org 1pM8wZ-00HAUJ-Ml c157058b83011a5acf1e2634d689fa4c
X-Original-To: ietf-http-wg@w3.org
Subject: Slower HTTP for privacy
Archived-At: <https://www.w3.org/mid/16133a2f-5fbe-0f7f-c2ea-e83d20fdb3cc@gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/40717
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <https://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
It would be appreciated if there were a slower HTTP, with more round trips, explicitly designed with privacy negotiation in mind. Importantly, you can't leak data which you do not have. The best way to not have that data is to not receive it. Why does a server need to accept user agents and a bunch of other unnecessary stuff if it isn't gonna use it? Doesn't it just make the server more liable for no good reason? Make it possible to turn it off! Most of it can just be turned off. In fact, the simplest servers (static hosting) only really need the URL and the Host. Everything else is unnecessary liability.
- Slower HTTP for privacy Soni L.
- Re: Slower HTTP for privacy Fabian Keil
- Re: Slower HTTP for privacy Soni L.
- Re: Slower HTTP for privacy Nick Harper
- Re: Slower HTTP for privacy Soni L.
- Re: Slower HTTP for privacy Daniel Stenberg
- Re: Slower HTTP for privacy Jeffrey Yasskin