IETF Logo Mail Archive

Re: https at ietf.org

Måns Nilsson <mansaxel@besserwisser.org> Wed, 06 November 2013 09:01 UTC

Return-Path: <mansaxel@besserwisser.org>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 268D121E80F4 for <ietf@ietfa.amsl.com>; Wed, 6 Nov 2013 01:01:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.3
X-Spam-Level:
X-Spam-Status: No, score=-2.3 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id loXEvXyPnGLa for <ietf@ietfa.amsl.com>; Wed, 6 Nov 2013 01:01:00 -0800 (PST)
Received: from jaja.besserwisser.org (jaja.besserwisser.org [IPv6:2a01:298:4:0:211:43ff:fe36:1299]) by ietfa.amsl.com (Postfix) with ESMTP id 78B0521E80ED for <ietf@ietf.org>; Wed, 6 Nov 2013 01:00:58 -0800 (PST)
Received: by jaja.besserwisser.org (Postfix, from userid 1004) id 5A0FF9D24; Wed, 6 Nov 2013 10:00:57 +0100 (CET)
Date: Wed, 06 Nov 2013 10:00:57 +0100
From: Måns Nilsson <mansaxel@besserwisser.org>
To: IETF-Discussion Discussion <ietf@ietf.org>
Subject: Re: https at ietf.org
Message-ID: <20131106090056.GD21546@besserwisser.org>
References: <CAHBU6ivbrk=NXgd4_5Upik+8H0AbHRy3kJnN=8fcK+Bz3pOV9Q@mail.gmail.com> <alpine.LRH.2.01.1311051733570.4200@egate.xpasc.com>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="UPT3ojh+0CqEDtpF"
Content-Disposition: inline
In-Reply-To: <alpine.LRH.2.01.1311051733570.4200@egate.xpasc.com>
X-URL: http://vvv.besserwisser.org
X-Purpose: More of everything NOW!
X-happyness: Life is good.
User-Agent: Mutt/1.5.20 (2009-06-14)
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Nov 2013 09:01:01 -0000

Subject: Re: https at ietf.org Date: Tue, Nov 05, 2013 at 05:35:39PM -0800 Quoting David Morris (dwm@xpasc.com):
> 
> I don't see reason to use https for delivery of public documents such
> as RFCs and Internet Drafts. All that would really accomplish is
> reduce caching opportunities.

I'd like to chime in on the side of prefering https; quoting such reasons
as layer separation (the transport should not decide based on content),
paranoia (yesteryears paranoia is SOP this year), and indeed significantly
dogfood. If we're not using this, what kind of message does this send?

Also, ands this is an _important_ part: We do not need perfect
security. We need to work on methods for raising the cost of the
Panopticon. For every activity that does not need good robust security
for some reason, we should make efforts so as to introduce a minimum
of default, always-on privacy. The subscription to our mailing lists
is still open, and the archives are freely accessible which sort of
underlines the idea that not all encrypted activities are secret or
illegal. They are just not up for grabs until so decided.

Consequently, the other access methods may be implemented in their own
leisure, as long as there is progress. The IETF MX host is, according to
its greeting banner, using Postfix, where opportunistic TLS is so simple
to activate that I have succeeded in my machine. I suggest this be done
as soon as practical. Just because.

-- 
Måns Nilsson     primary/secondary/besserwisser/machina
MN-1334-RIPE                             +46 705 989668
My CODE of ETHICS is vacationing at famed SCHROON LAKE in upstate New York!!

v2.23.0 | Report a Bug | By Email