Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 05 Dec 2017 23:30:35 +0000
From:      "Poul-Henning Kamp" <phk@phk.freebsd.dk>
To:        Yuri <yuri@rawbw.com>
Cc:        Gordon Tetlow <gordon@tetlows.org>, freebsd-security@freebsd.org, Dewayne Geraghty <dewayne.geraghty@heuristicsystems.com.au>
Subject:   Re: http subversion URLs should be discontinued in favor of https URLs
Message-ID:  <24380.1512516635@critter.freebsd.dk>
In-Reply-To: <1294e5c4-9554-b9f5-8ea9-13aca5411e9a@rawbw.com>
References:  <97f76231-dace-10c4-cab2-08e5e0d792b5@rawbw.com> <5A2709F6.8030106@grosbein.net> <11532fe7-024d-ba14-0daf-b97282265ec6@rawbw.com> <8788fb0d-4ee9-968a-1e33-e3bd84ffb892@heuristicsystems.com.au> <20171205220849.GH9701@gmail.com> <24153.1512513836@critter.freebsd.dk> <1294e5c4-9554-b9f5-8ea9-13aca5411e9a@rawbw.com>
next in thread | previous in thread | raw e-mail | index | archive | help 
--------
In message <1294e5c4-9554-b9f5-8ea9-13aca5411e9a@rawbw.com>, Yuri writes:
>On 12/05/17 14:43, Poul-Henning Kamp wrote:
>> The vastly oversold "security" of HTTPS is entirely borrowed from
>> a confederation of root-CA's which no non-deluded person can ever
>> seriously trust.
>
>
>Your argument goes like this [...]

Yuri,

You get to express your opinion, you do not also get to express mine.

The core problem of all encryption is key distribution.

HTTPS doesn't have that, it relies entirely on the CA system for it.

The CA conglomerate is broken, trojaned and backdoored, and documented
as such, and therefore HTTPs is a potempkin shell of security.

Until HTTPS has something more trustworthy than the CA conglomerate
to distribute keys, it is no safer in any respect than plain HTTP.

And you are wasting everybodys time by trying to change FreeBSD's
*100% non-private* version control system to a protocol which offers
no privacy where no privacy is needed.

You should spend *your* time getting personally involved in your
own countrys political system, which is where the relevant decisions,
bad or good, about our electronic privacy will be made.

Over and out...

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?24380.1512516635>