HTTP Must Die, Security Experts Tell Hackers
Tags:
- Security
Last response: in Home Theatre
Anonymous
a
b
8
Security
July 18, 2014 5:40:23 PM
All Web data needs to be encrypted, two technology activists tell the crowd at the HOPE X hacker conference.
HTTP Must Die, Security Experts Tell Hackers : Read more
HTTP Must Die, Security Experts Tell Hackers : Read more
More about : http die security experts hackers
jasonelmore
July 18, 2014 7:10:11 PM
velocityg4
July 18, 2014 8:27:15 PM
Not sure if the Google analogy is apt. Since you can simply go to https://www.google.com
Score
0
techguy911
July 18, 2014 8:42:33 PM
Christopher1
July 18, 2014 10:47:10 PM
Haravikk
July 19, 2014 1:04:01 AM
While I agree in theory, it's worth mentioning that encrypting e-mail server connections only matters because so much e-mail is still sent as plaintext; it doesn't necessarily protect you against malicious servers, if you want secure e-mail you need to setup and use S/MIME. It's actually fairly easy, the difficult bit is trading public keys (or rather, convincing others to setup S/MIME for two-way encryption).
Score
1
Pherule
July 19, 2014 3:38:59 AM
eriko
July 19, 2014 3:55:06 AM
DRtheNerd
July 19, 2014 5:32:36 AM
I surveyed Alexa Top 50 results for HTTPS-only functionality and published those results here: https://www.dnsthingy.com/blog/2014/06/alexa-top-50-htt...
Score
0
ddpruitt
July 19, 2014 9:09:54 AM
Pherule
July 19, 2014 11:45:46 AM
@ddpruitt: why is there any reason to have a portion unencrypted? To allow your ISP to spy on you? They can already see which sites you go to, which is bad enough, even if they can't see what content you view on a secure site.
Yeah yeah, what ISP spies on their users, I get it, it probably won't happen, and I don't care. I don't want to give them the possibility, whether they choose to use it or not.
Yeah yeah, what ISP spies on their users, I get it, it probably won't happen, and I don't care. I don't want to give them the possibility, whether they choose to use it or not.
Score
0
waethorn
July 19, 2014 12:42:17 PM
Quote:
Or you only encrypt the portions of the connection you need to. No one ever said that you have to encrypt the entire site, http wasn't built that way. Encrypt what you need to forward the rest.Every security expert will tell you that mixing encrypted with unencrypted content is bad for security.
Score
2
ddpruitt
July 19, 2014 1:47:24 PM
Quote:
@ddpruitt: why is there any reason to have a portion unencrypted? To allow your ISP to spy on you? They can already see which sites you go to, which is bad enough, even if they can't see what content you view on a secure site.Yeah yeah, what ISP spies on their users, I get it, it probably won't happen, and I don't care. I don't want to give them the possibility, whether they choose to use it or not.
Stream compression, CDNs, Proxies to name a few reasons.
Score
0
ddpruitt
July 19, 2014 1:47:47 PM
LORD_ORION
July 19, 2014 3:00:40 PM
dj christian
July 20, 2014 3:03:06 AM
back_by_demand
July 21, 2014 4:28:06 AM
Read discussions in other Home Theatre categories
!