Comment by 1970-01-01
13 hours ago
You enumerated the security risks of clear text transmission over the Internet and everything came up green because the blogger works on Linux?
13 hours ago
You enumerated the security risks of clear text transmission over the Internet and everything came up green because the blogger works on Linux?
If you are too afraid to click a cleartext HTTP link then don't; it's not for you. Just spare the rest of us the melodrama.
While you are at it, better not ever update Debian or any number of other OSes because their updates are served over plain HTTP.
You almost had a great point here. If he began every blog rant with BEGIN PGP SIGNED MESSAGE and included a digital key somewhere secure, somewhere that I could go and verify, just Debian does with updates, I maybe could tolerate the cleartext. But he clearly didn't (pun alert!)
Please don't get me wrong. I'm glad the world has mostly transitioned over to HTTPS, but what are you actually concerned about with reading a blog post over HTTP? If you had to log in or post form data, or hosted binaries or something I would get it. But what is wrong with reading an article in the clear? And how would SSL prevent that?