Re: Proposed Statement on "HTTPS everywhere for the IETF"

Nico Williams <nico@cryptonector.com> Thu, 04 June 2015 16:33 UTC

Return-Path: <nico@cryptonector.com>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 659D91A9040 for <ietf@ietfa.amsl.com>; Thu, 4 Jun 2015 09:33:46 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.666
X-Spam-Level:
X-Spam-Status: No, score=-1.666 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, IP_NOT_FRIENDLY=0.334, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bvIfEVPuIgXy for <ietf@ietfa.amsl.com>; Thu, 4 Jun 2015 09:33:45 -0700 (PDT)
Received: from homiemail-a110.g.dreamhost.com (sub4.mail.dreamhost.com [69.163.253.135]) by ietfa.amsl.com (Postfix) with ESMTP id 685E01A9075 for <ietf@ietf.org>; Thu, 4 Jun 2015 09:31:38 -0700 (PDT)
Received: from homiemail-a110.g.dreamhost.com (localhost [127.0.0.1]) by homiemail-a110.g.dreamhost.com (Postfix) with ESMTP id 3F8852005E80F; Thu, 4 Jun 2015 09:31:38 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=cryptonector.com; h=date :from:to:cc:subject:message-id:references:mime-version :content-type:in-reply-to:content-transfer-encoding; s= cryptonector.com; bh=5TW+XUzQJFKhEyUu44Vu8FSVbeo=; b=opc/qfpT8+A 579xyiISLfpa8TQZlNyB2R06JnJigAJwNSIxSiTNoOCjZeeWzy9o8TZCTg1QXB3v dzZNGQrQpYN/Q22OGszi94ZqAvUJZzYTok5zCzH6j3zpNlVnyNSBSk2E+o40VQEV 8ptrhUtCxBB6CUD3BDfqSVxj+wrjJtxk=
Received: from localhost (108-207-244-174.lightspeed.austtx.sbcglobal.net [108.207.244.174]) (Authenticated sender: nico@cryptonector.com) by homiemail-a110.g.dreamhost.com (Postfix) with ESMTPA id 1E37F2005E808; Thu, 4 Jun 2015 09:31:36 -0700 (PDT)
Date: Thu, 4 Jun 2015 11:31:35 -0500
From: Nico Williams <nico@cryptonector.com>
To: Yoav Nir <ynir.ietf@gmail.com>
Subject: Re: Proposed Statement on "HTTPS everywhere for the IETF"
Message-ID: <20150604163134.GI18760@localhost>
References: <20150601164359.29999.35343.idtracker@ietfa.amsl.com> <0ab501d09e37$f4098980$dc1c9c80$@tndh.net> <556F6083.4080801@cs.tcd.ie> <0adf01d09e40$cf957b00$6ec07100$@tndh.net> <556F8339.5030002@cs.tcd.ie> <0b3901d09e73$7dad4740$7907d5c0$@tndh.net> <556FC594.1080900@gmail.com> <E6B6376E-9C27-41D5-94FF-BA98563C7A86@gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
In-Reply-To: <E6B6376E-9C27-41D5-94FF-BA98563C7A86@gmail.com>
User-Agent: Mutt/1.5.21 (2010-09-15)
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/ietf/05SYEhQIQ4gKhCUGG_vsWi8iBJQ>
Cc: ietf@ietf.org
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 04 Jun 2015 16:33:46 -0000

On Thu, Jun 04, 2015 at 10:06:23AM +0300, Yoav Nir wrote:
> > On Jun 4, 2015, at 6:27 AM, Brian E Carpenter <brian.e.carpenter@gmail.com> wrote:
> > Try "...the act of accessing public information required for routine
> > tasks can be privacy sensitive *on the user's side*…"
> 
> This is very true for Wikipedia, very true about news sites and many
> other sites. Not the IETF.

Internet RFCs tell the user much of what they need to implement
technology that might be deemed subversive or otherwise prohibited where
the user resides.

Also, the more useful "harmless" sites require HTTPS, the harder it is
for great firewalls to block it indiscriminately.  That might be a
politically-desirable effect to the IETF.