IETF Logo Mail Archive

Re: [hybi] workability (or otherwise) of HTTP upgrade

Scott Ferguson <ferg@caucho.com> Thu, 09 December 2010 17:25 UTC

Return-Path: <ferg@caucho.com>
X-Original-To: hybi@core3.amsl.com
Delivered-To: hybi@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id F2A5E3A696D for <hybi@core3.amsl.com>; Thu, 9 Dec 2010 09:25:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.757
X-Spam-Level:
X-Spam-Status: No, score=-1.757 tagged_above=-999 required=5 tests=[AWL=0.242, BAYES_00=-2.599, J_CHICKENPOX_37=0.6]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uLs+6SSoBJbw for <hybi@core3.amsl.com>; Thu, 9 Dec 2010 09:25:54 -0800 (PST)
Received: from nm5-vm0.bullet.mail.ac4.yahoo.com (nm5-vm0.bullet.mail.ac4.yahoo.com [98.139.52.68]) by core3.amsl.com (Postfix) with SMTP id B4D8628C13F for <hybi@ietf.org>; Thu, 9 Dec 2010 09:25:06 -0800 (PST)
Received: from [98.139.52.197] by nm5.bullet.mail.ac4.yahoo.com with NNFMP; 09 Dec 2010 17:26:31 -0000
Received: from [98.139.52.132] by tm10.bullet.mail.ac4.yahoo.com with NNFMP; 09 Dec 2010 17:26:31 -0000
Received: from [127.0.0.1] by omp1015.mail.ac4.yahoo.com with NNFMP; 09 Dec 2010 17:26:31 -0000
X-Yahoo-Newman-Id: 349854.16896.bm@omp1015.mail.ac4.yahoo.com
Received: (qmail 18443 invoked from network); 9 Dec 2010 17:26:31 -0000
Received: from [192.168.1.11] (ferg@66.92.8.203 with plain) by smtp113.biz.mail.re2.yahoo.com with SMTP; 09 Dec 2010 09:26:31 -0800 PST
X-Yahoo-SMTP: L1_TBRiswBB5.MuzAo8Yf89wczFo0A2C
X-YMail-OSG: r4PyyxUVM1n2b0u7USbFZwe54W3nO2Nz7sjySH2gcTKsTYV hQnn.OkSpJ9YUj_IINaQM71Y1IG4FeGwmaoopD9yGv0IyedhAyaWfZrRU6g1 IMs1TanMXFwfmefCjqnuIQ6DjdO0XxU5ZZyVD7kqbGVbHSfilKDxRVBYQEtz 1RD_o3ULvkL_Y4KvanMl6WosYdzkDz3lyuU4LzEOXaJ84BWQA6P7QUWQLoGv ttfStUU59HcoXIc8A2tk4j9xL8DxULyfqUIudNvM8enaSWy4Xy1w47Fhnq6c K6LgUPp1k5bPln1voXXQIVPoJ5gXLm2SpZdE_9INj6_hcSvECMF0y4M7ZNsf 11PBkrg.Rs6yLN_Jpf0vrhGBDTcOplwoV9qdCmQ6e9ga5Zfqgnp8-
X-Yahoo-Newman-Property: ymail-3
Message-ID: <4D011146.3080906@caucho.com>
Date: Thu, 09 Dec 2010 09:26:30 -0800
From: Scott Ferguson <ferg@caucho.com>
User-Agent: Thunderbird 2.0.0.24 (X11/20100411)
MIME-Version: 1.0
To: "Pat McManus @Mozilla" <mcmanus@ducksong.com>
References: <BB947F6D-15AA-455D-B830-5E12C80C1ACD@mnot.net> <81870DB1-B177-4253-8233-52C4168BE99D@apple.com> <F4D1B715-3606-4E9A-BFB2-8B7BC11BE331@mnot.net> <57D4B885-B1D8-482F-8747-6460C0FFF166@apple.com> <37A00E8D-B55C-49AD-A85C-A299C80FFF17@mnot.net> <4F2580A7-79C2-4B0A-BCE5-7FB6D9AA0ED7@apple.com> <BB31C4AB95A70042A256109D461991260583956C@XCH117CNC.rim.net> <EA41A6C7-971C-4EC8-AA6F-96363B7FDC4C@gmail.com> <73E53F19-E0E7-4ADB-B765-ABAF0B4A6736@mnot.net> <r2f0g6d7bj770kg0db5ptr027ninmckns8@hive.bjoern.hoehrmann.de> <20C2FBB9-901F-4235-AF23-EC8262585905@mnot.net> <1291905941.2315.2113.camel@ds9.ducksong.com>
In-Reply-To: <1291905941.2315.2113.camel@ds9.ducksong.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: hybi <hybi@ietf.org>
Subject: Re: [hybi] workability (or otherwise) of HTTP upgrade
X-BeenThere: hybi@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Server-Initiated HTTP <hybi.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/hybi>
List-Post: <mailto:hybi@ietf.org>
List-Help: <mailto:hybi-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/hybi>, <mailto:hybi-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 09 Dec 2010 17:25:55 -0000

Pat McManus @Mozilla wrote:
> CONNECT is different in that it is more reasonable to assume it doesn't
> show up in the proxy list of "things I don't understand". If nothing
> else has made them aware viruses have done so....  We aren't relying on the
> handling of CONNECT being unknown, at least as a first line of defense.
>   

This is a good point.

> That being said, I've always preferred that WebSockets not be HTTP/80
> based at all - but the group had really reached consensus on that topic
> and I believe in working forward within that consensus. I think the
> minutes say the "focus will be on leveraging HTTP infrastructure" while
> noting that it doesn't actually preclude the group from looking at other
> alternatives - but I read the clear sense of the group as wanting to
> base WebSockets on the one-true-port.
>   

I think that assumption should be revisited because CONNECT no longer 
significantly leverages HTTP infrastructure.

When the draft used GET+Upgrade, servers could reuse things like the 
HTTP authentication, cookie headers, etc., and reuse the existing 
protocol stack for things like the normal servlet/script dispatch, 
config, admin, logging, etc.

With CONNECT, since that reuse doesn't occur (or at least no more than a 
new port and handshake would), the leveraging benefit goes away and 
we're left with bypassing firewalls as the only benefit of using port 80.

-- Scott



> I am in favor of revisiting the non HTTP approach, but I don't think
> there will be agreement on it. And lacking agreement, I think CONNECT is
> workable and a way forward to make some progress.
>
> -Patrick
>
>

v2.23.0 | Report a Bug | By Email