On Wed, 15 Feb 2017 18:19:00 +0100 Brian Exelbierd <bex@xxxxxxxxx> wrote: > This is a very reasonable proposal, but could represent a problem for > some in an indirect way. My personal blog is currently hosted in a > manner that makes using https not possible.[^0] I don't know if > others are in a similar situation, but it is reasonable to think so. > Enabling https is one thing, but in my case a full migration will be > required. Is there a reason we need to require the blogs that are > aggregated to be https and not just encourage it and move the planet > to https? Well, the main reason is that http blogs and content would cause most browsers to show a 'partially insecure' type message. Which would cause people to come to us and ask "why can't you secure your site?" :( But of course one option would be to just keep allowing http blogs and educate people. kevin
Attachment:
pgpENs7LFsorI.pgp
Description: OpenPGP digital signature
_______________________________________________ infrastructure mailing list -- infrastructure@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to infrastructure-leave@xxxxxxxxxxxxxxxxxxxxxxx
