From owner-freebsd-security@freebsd.org  Mon Dec 11 21:14:07 2017
Return-Path: <owner-freebsd-security@freebsd.org>
Delivered-To: freebsd-security@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 9DCA4E9EDEF
 for <freebsd-security@mailman.ysv.freebsd.org>;
 Mon, 11 Dec 2017 21:14:07 +0000 (UTC)
 (envelope-from jamie@catflap.org)
Received: from donotpassgo.dyslexicfish.net (donotpassgo.dyslexicfish.net
 [IPv6:2001:19f0:300:2185:a:dead:bad:faff])
 (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id 6907E7995F
 for <freebsd-security@freebsd.org>; Mon, 11 Dec 2017 21:14:07 +0000 (UTC)
 (envelope-from jamie@catflap.org)
Received: from donotpassgo.dyslexicfish.net (donotpassgo.dyslexicfish.net
 [104.207.135.49])
 by donotpassgo.dyslexicfish.net (8.14.5/8.14.5) with ESMTP id vBBLE3FR002081; 
 Mon, 11 Dec 2017 21:14:03 GMT
 (envelope-from jamie@donotpassgo.dyslexicfish.net)
Received: (from jamie@localhost)
 by donotpassgo.dyslexicfish.net (8.14.5/8.14.5/Submit) id vBBLE2u1002071;
 Mon, 11 Dec 2017 21:14:02 GMT (envelope-from jamie)
From: Jamie Landeg-Jones <jamie@catflap.org>
Message-Id: <201712112114.vBBLE2u1002071@donotpassgo.dyslexicfish.net>
Date: Mon, 11 Dec 2017 21:14:02 +0000
Organization: Dyslexic Fish
To: michelle@sorbs.net, jmg@funkthat.com
Cc: yuri@rawbw.com, phk@phk.freebsd.dk, freebsd-security@freebsd.org
Subject: Re: http subversion URLs should be discontinued in favor of https URLs
References: <97f76231-dace-10c4-cab2-08e5e0d792b5@rawbw.com>
 <2a6d123c-8ee5-8e1e-d99b-4bce02345308@rawbw.com>
 <1217.1512685566@critter.freebsd.dk>
 <A9370975-7077-432C-985A-56657CF0CC98@dataix.net>
 <83e44188-6e0d-13cc-4b80-d191ac010427@rawbw.com>
 <5A2A6985.3070202@sorbs.net> <20171210172127.GD5901@funkthat.com>
In-Reply-To: <20171210172127.GD5901@funkthat.com>
User-Agent: Heirloom mailx 12.4 7/29/08
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-4.2.7
 (donotpassgo.dyslexicfish.net [104.207.135.49]);
 Mon, 11 Dec 2017 21:14:05 +0000 (GMT)
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.25
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Dec 2017 21:14:07 -0000

John-Mark Gurney <jmg@funkthat.com> wrote:

> So you're fine w/ all the Comcast users having to switch ISPs?  Because
> Comcast modifies traffic.  So you're now saying that if you use FreeBSD
> you can't use Comcast as your ISP?

... or they could use HTTPS, which exists.

This thread started with the proposal to remove HTTP, nothing to do with 
disabling already existing HTTPS solutions.

Cheers, J.