Google Proposes To Warn People About Non-SSL Web Sites

mrspoonsi writes The proposal was made by the Google developers working on the search firm's Chrome browser. The proposal to mark HTTP connections as non-secure was made in a message posted to the Chrome development website by Google engineers working on the firm's browser. If implemented, the developers wrote, the change would mean that a warning would pop-up when people visited a site that used only HTTP to notify them that such a connection "provides no data security". Currently only about 33% of websites use HTTPS, according to statistics gathered by the Trustworthy Internet Movement which monitors the way sites use more secure browsing technologies. In addition, since September Google has prioritised HTTPS sites in its search rankings.

Nuts

completely

503

[webmistressrachel]

Did slashdot just die and silently come back up? I was getting 503's and "offline mode", logged in and out for ages, then suddenly its just working again. Anybody else experience anything like that?

Re:503

[Dutch+Gun]

Yep, same here.

On topic, Google, I appreciate the focus on security, but stop deciding to simply implement however YOU THINK the web should be working. Ok, technically, it's just a change in the browser, but the semantics are obviously meant to "encourage" everyone to switch to HTTPS. However a good idea some of us think that is, it's not up to you.

This is why people are getting freaked out about the power you hold. You're starting to demonstrate that you're not afraid to *use* that influence to simply push things to work however you want them to. You've already done that once already by pushing forward an SSL-related change far ahead of when it really needed to be, and now it looks like you're floating a trial balloon to go one step further.

Am I overreacting here? Or is Google going too far, too fast with this?

Re:503

[retroworks]

I got an "insecure login" warning when I was trying to log into /. in the past 15 minutes

Re:503

[Irate+Engineer]

Same here.

Re:503

Weird. I had no problems on the west coast but I noticed nobody was adding comments for the last half hour or more.

Re:503

[Charliemopps]

Nah... When getting concerned about control, the following usually holds true:
Rules that inform are good.
Rules that control are bad.

This rule informs. It's good.
This has been a public service announcement. :-)

Re:503

So someone who has a personal blog site with no way for others to comment on because google wants to throw up popups, they already notify us with the green box in the URL field. We don't need no extra crap.

Re:503

[Narcocide]

I got logged out, and when I went to log back in Firefox stopped me, saying slashdot's SSL certificate was invalid. A few minutes later the problem seemed to correct itself and I did not have to re-authenticate.

Re:503

SSL is not secure either. It is only allunsion.

Companies have the keys in firewall to break the secuirty to protect against bad content and virsus.
Google has our webclients "finger printed" to know we are us. This allows taps to made in their equipment.

It is those taps, just like the phone company, they want to be paid to do. Court orders the tap, and goverment paids the fee.

This is just a new revenue stream. Drive the lemings to https, get paid for serving the goverment.

Re:503

[skids]

Yeah, same here. Kept ending up with certs presented from a CDN's domain.

Re:503

[stephanruby]

On topic, Google, I appreciate the focus on security, but stop deciding to simply implement however YOU THINK the web should be working.

Google should do whatever it wants. After all, if I get annoyed enough by Google Chrome, I'll just switch back to Firefox or Opera. Only the ChromeOS/ChromeBook/ChromeBox users may be screwed (because they've made the mistake of locking their hardware to a specific vendor browser).

In any case, Google hasn't formally announced a decision yet, it has merely made a proposal public and started a discussion on the subject requesting feedback. The fact that everyone is condemning Google for this proposal vindicates all the companies that keep their discussions private and out of the public eye until they work them out -- all secretly first.

Re:503

We don't need no extra crap.

Sounds like a song...

Re:503

This rule misinforms. There is nothing alarming about a site not having encryption enabled. A security pop-up is very alarming to the average uneducated user. It's bad enough with the "this site is untrusted" warnings whenever self-signed certs are involved. I trust that self-signed cert more than any of your "trusted" CAs you fuckers!
Ultimately this is lying to your users because you believe that they do are not technology-literate enough to make the right choice.
I get that making a secure product that is easy for the average mook is hard, but social-engineering your way around ignorance is a lazy shortcut.

Re: 503

[midiaa]

yep! Your eyes weren't lying.

Re:503

Rolls eyes, if the entire web is not over https how do you expect that bulk metadata collection will ever end? It's not about protection or keeping things confidential it's about privacy and the prevention of mass metadata collection.

Re:503

[ArcadeMan]

SSL is not secure either. It is only allunsion.

And so are spell-checkers.

Re:503

[bledri]

... You've already done that once already by pushing forward an SSL-related change far ahead of when it really needed to be, and now it looks like you're floating a trial balloon to go one step further.

Am I overreacting here? Or is Google going too far, too fast with this?

You are overreacting. It's a positive step and there is no good reason in 2014 that all internet traffic should not be encrypted. Oh, and it's a free browser and there are other options both free and proprietary.

Re:503

[BradMajors]

https will not stop mass metadata collection.

Re:503

[Pope+Hagbard]

This. Grandparent's being overdramatic.

Re:503

[flink]

SSL is not secure either. It is only allunsion.

And so are spell-checkers.

Just what are you allusioning to?

Re:503

[hairyfeet]

Riiiight because the site where I go to look at 1970s toys that has no comments or login NEEDS to be HTTPS because....reasons.

Might want to look up the concept of "security theater" bub because all this will do is train users that any site that doesn't show the "bad place" warning is safe to give any and all data along with CC numbers, its the classic "If we only have X then we'll be safe!" with X being whatever magic dust you wanna push today.

Re:503

https will not stop mass metadata collection.

It definitely will make the spying harder though...which is a good thing.

Re:503

[thegarbz]

Not overreacting, but not thinking rationally here either. Google may be going too far alone, but they are definitely not going too fast.

It has bugged me for years that unencrypted plain text data is given a pass, but a self-signed certificate with encryption brings up a warning that requires multiple clicks and in some cases even importing a certificate to get through.

Google have been quite pushy, but with interesting result. The world hasn't blindly bowed down to them but rather increased the speed at which they have solved other long standing problems which were getting no interest. I'm hoping the same thing will happen here, that one company doing something different may spur people into fixing what I believe is a horrendously broken approach to security.

Re: 503

[peppepz]

Google has a dominant position (among other places) in the browser market so site owners can't disregard their imposition. Saying that you can install other browsers would have been just like saying "you can install another OS" when Microsoft played leverage games with their near monopoly on the desktop back in the times. Plus, Chrome tends to end up installed on the PCs of many unexperienced users because of their policy of aggressive bundling. So one can expect that a relevant portion of his site's visitors will be using Chrome in the foreseeable future no matter what.

Re:503

[WaffleMonster]

It has bugged me for years that unencrypted plain text data is given a pass, but a self-signed certificate with encryption brings up a warning that requires multiple clicks and in some cases even importing a certificate to get through.

When you enter http:/// you are declaring your intent to view unsecured content.

When entering https:/// you are declaring your intent to view secured content. An untrusted certificate is not trustworthy and cannot be used as a means of securing content.

Re:503

[BlueBlade]

Also, it will make people accustomed to the pop-up by giving so many false positives. So much that, when it actually matters and they are sending information, they'll just ignore it because it comes up 10 times per day anyway.

Re:503

Prove to me that the site with 1970s toys that has no comments or login NEEDS to be UNENCRYPTED. Why must any site be unencrypted?

The goal seems straight-forward: encrypt everything. All of it. Then they can't tell whether you're looking at 1970s toys, or if the website secretly has a web forum for communicating with like-minded patriots. Passing surveillance won't be able to tell any more, for anybody, and this will be normal. Right now, a judge can be convinced (fooled) that "using military-grade encryption" is itself suspicious enough to factor into issuing a warrant. If everything is encrypted as a matter of course, it won't be.

But this is quite the opposite of "security theatre". Why should everyone need to decide on a case by case basis which things ought to be deserving of encryption? Do you decide that you should use a browser that broadcasts the pages it visits when going to a 1970 toys site, but not to other sites? Why not take the best option and apply it everywhere? Encryption is cheap!

Re:503

[CronoCloud]

Same for me, said the cert was for Cloudfront.

Re:503

[Midnight+Thunder]

I am just fed up with Google dumbing down the web browser and turning Chrome into our way or the highway. Cases in point:
    - refusal to support APNG
    - hiding protocol in address field URL

I am hesitating whether to go back to Firefox.

Re:503

[LordWabbit2]

If they implement this I will be going back to FireFox as my primary browser (I'm a web developer, I have almost every damn browser installed) I fail to see how going to my local newsite to read about the new antics of our clown politicians needs to be encrypted and load slower because the proxy can't cache it when a fellow work colleague visited the site earlier in the day. I will encrypt what I deem to be sensitive in nature. If the NSA or anybody else even gives a rats ass about me reading the news then good for them. I don't give a rats ass if they do know. My banking however, is a different matter. So a popup when I click on 70% of websites on the internet is going to get annoying damn quick. Do the chrome developers have shares in Thawte or VeriSign or something?

Re:503

[Anne+Thwacks]

Why do we need security to view academic articles, adverts or mindless blather? Most people have no need of locking their rubbish bin (and most of what is on the internet is definitley rubbish - I have looked :-) There really are people who use the internet for other things than shopping!

There is every reason to have security for some things, but none for others.

Why force it on people? The result of this will be huge numbers of badly configured systems, and either over confidence or total loss of confidence in SSL.

Re: 503

Buy me a cert and install it on my dvr then.

Re:503

[thegarbz]

I don't think I've entered either of those things in the last 10 years. Heck they aren't even shown on my URL at the moment.

Being not trustworthy and not necessarily secure from everyone is still a damn site more secure than shouting in a crowded theater.
Then you can consider repeat presentation of the same credentials. Going to the same self-signed website twice and being presented with the same certificate is at least an indication I was talking to the same person as before.
Then you can consider notoriety. If I see the same credentials right now as someone in Germany and someone in China, I can at least be partially sure that my end of the system hasn't been compromised.

Security is not black and white, regardless of how many people treat it as such. Do you also consider having a front door with a door lock any better than just having a hole in the wall open to the road? Or do you suggest we all stick with a simple hole in the wall until we can be bothered to install automated defense turrets outside of a metal dome that we put over our homes?

Re: 503

Incorrect. An untrusted certificate is perfectly fine for encrypting data. What it is not necessarily perfectly fine for is verifying the identity of the party on the other end.

That is why we have certificate authorities. Allegedly. Unfortunately, we lack a proper method to determine that a certificate issued by a CA is actually the one at the site owner intended it to be issued.

So if some spy agency or court compels a CA that your browser trusts to issue a certificate for a site that didn't order one from them, they now have a perfect method for spying on your secure communications. Therefore, CAs can't really be trusted either. Yet we have no warning about that for regular end users...

What needs to be invented is a cryptographically secure verification that a certificate presented to you by a web site is actually the proper one for that website. Anything else is just window dressing.

Minor problem from certain peoples point of view though: depening on implementation, such a thing could possibly make certificate authorities obsolete, and could also alert end users to things like corporate spying on their connections at work. I would welcome both developments, though there are obviously people who would not.

Re:503

[petermgreen]

That*'s certainly an issue and is why the warnings are the way they are. Possible soloutions would include a new url scheme or extending the http standard to support a starttls type scheme to allow encrypted connections with the http url scheme (the downside of the latter is it will give the attacker hints that the connection is likely to be unauthenticated).

I strongly disagree with the people who say encrypted but unauthenticated is as bad as unencrypted. Yes a targetted attack can use man-in-the-middle techniques but if anyone starts doing that on a large scale they are likely to get noticed.

*And the related issue that when you set a form submission url as https you are declaring your intent to have the form submitted over a secure connection.

Re:503

[LWATCDR]

What about when it misinforms?

If I go to a local restaurant site that does not take orders and it is not running SSL just how is it insecure?
It is like a warning that a public park is insecure because it doesn't have a burglar alarm.
Also just because a site uses ssl does not mean that it is malware free or that it has not been hacked and all the user data taken.

When is a false sense of security a good thing?
And please do not tell me that I should worry about the NSA knowing that I was looking at restaurants.

Re:503

[FireFury03]

Google should do whatever it wants. After all, if I get annoyed enough by Google Chrome, I'll just switch back to Firefox or Opera. Only the ChromeOS/ChromeBook/ChromeBox users may be screwed (because they've made the mistake of locking their hardware to a specific vendor browser).

IE taught us that this kind of thing doesn't happen quickly - web developers _still_ have to deal with IE's buggy rendering, despite good alternatives having been available for 15 years. Ok, IE has got better but it's still not great. Users don't see this stuff as a browser problem - if your website doesn't work right then the users see it as a problem with your website.

Re:503

Unless you can verify the authenticity of the self-signed cert your connection is prone to an active MITM attack. Active attacker Charlie can literally just intercept the certificate you're being sent, substitute it for their own self-signed cert, and neither party is any the wiser. Yeah, your connection will be encrypted, but it'll be decrypted and re-encrypted by the attacker.
 
The scenario is unlikely unless you're a "person of interest", but unless you have some Out-Of-Band verification of authenticity you're essentially just wasting CPU cycles encrypting the packets.

Re:503

>there is no good reason in 2014 that all internet traffic should not be encrypted
1. SSL costs additional cpu time, consumes additional power, and generates additional heat on both sides of the connection. Happy mobile-ing.
2. Without MitM attacks, SSL breaks caching in quite a few cases.
3. Without MitM, you lose the ability to block ads/bad websites at your router/firewall/other transparent proxy
4. With MitM, what;s the fucking point of this?

There is absolutely no reason my "unlisted" host containing a bunch of OGL D&D shit I've done over the years needs to be encrypted. Absolutely none. As the additional CPU time to do the encryption would probably cost me more (a few cents, yeah, but it's completely unneeded) I oppose it.

This will be the final kick to dump chrome and go back to firefox. Even if they are quite likely to do this themselves in 2-4 years.

Re:503

It has bugged me for years that unencrypted plain text data is given a pass, but a self-signed certificate with encryption brings up a warning that requires multiple clicks and in some cases even importing a certificate to get through.

That is the correct behavior.

Are you getting that error because the website is too cheap to pay $15 for an SSL certificate from a certificate authority?

Or are you getting that message because a bad guy is impersonating the website?

It is very difficult to tell the difference between incompetence and malice.

Re: 503

They did. It's called DANE.

Re:503

[chihowa]

If you verify the self-signed certificate the first time you use it, it can't be substituted for another self-signed certificate at any later point in time without triggering an alert. However, even if you personally verify a CA signed certificate, it can be continually be replaced with other CA signed certificates without ever alerting you (DANE and such not withstanding).

Because of the currently implemented browser behavior, which is to implicitly trust any certificate signed by any root CA, personally verified self-signed certificates are more resistant to MITM attacks.

Re:503

Firefox does the second of your gripes in its address bar, at least when it is http://

Re:503

[leaen]

Unless you can verify the authenticity of the self-signed cert your connection is prone to an active MITM attack. Active attacker Charlie can literally just intercept the certificate you're being sent, substitute it for their own self-signed cert, and neither party is any the wiser. Yeah, your connection will be encrypted, but it'll be decrypted and re-encrypted by the attacker. The scenario is unlikely unless you're a "person of interest", but unless you have some Out-Of-Band verification of authenticity you're essentially just wasting CPU cycles encrypting the packets.

Repeating misinformation does it make true. With self-signed certificate you are probably safe from NSA snooping unless it intercepts all connections. When MITM is involved certificates wont save you. Say you typed google.com to address bar. Then determined phiser would modify DNS to say that google.com is http only. A loaded fake http://google.com/ page would contain redirection to https://goog1e.com/ As attacker registered goog1e.com domain and got certificate from startssl.com or other CA that does not bother checking anything besides that you own domain you are owned anyway.

Re:503

[WaffleMonster]

I don't think I've entered either of those things in the last 10 years. Heck they aren't even shown on my URL at the moment.

That's the problem they removed all of the indicators that would tell people what the hell is going on and confuse them with fake pointless assertions. Only now they are realizing they fucked up. When and if they fix it I hope they don't overreact and put even more people at risk.

Do you also consider having a front door with a door lock any better than just having a hole in the wall open to the road?

HTTP should look like the entrance to a 7-11 busy churning our Slurpees for all the good little boys and girls.

HTTPS should look like the entrance to a bank vault with armed guards standing watch.

The industry has failed for a number of reasons to present this picture to the user... at every turn they let their designers loose with their abstract Spartan design bullshit taking away critical information from the user. All the while legitimate sites routinely trick users with fake assertions of security having no basis in reality.

I don't think doubling down and forcing SSL on everyone is the answer.. the answer is realizing you have fucked up and fixing the underlying problem. The underlying problem is browser is not saying shit about security status of a site and when it does it is not obvious enough.

Re:503

> There is nothing alarming about a site not having encryption enabled

There is if you're sending private info to it...

Re:503

[WaffleMonster]

I strongly disagree with the people who say encrypted but unauthenticated is as bad as unencrypted. Yes a targetted attack can use man-in-the-middle techniques but if anyone starts doing that on a large scale they are likely to get noticed.

I don't think people realize how easy it is to hijack a TCP session. There is essentially no filtering being done by any operator... packet spoofing can be trivially carried out from virtually anywhere on the network.

I think your right in the abstract that opportunistic encryption is helpful against certain types of threats (e.g. Room 641A) ... and I would be supportive of implementation provided nobody knew it was going on.

The trouble is this nuance is too big an ask for normal users whose day job is not security to understand. When we say "it's encrypted" they hear "it's secure" ... which isn't true.

This is my problem with opportunistic encryption is that people will rely on it and then get burned by it and this is worse than not doing it.

Re:503

[tepples]

If you verify the self-signed certificate the first time you use it, it can't be substituted for another self-signed certificate at any later point in time without triggering an alert.

In other words, the logic commonly used with SSH. But it doesn't help if you happen to be behind a man in the middle "the first time you use it". For this first time, you still need some other way of verifying the key fingerprint.

Re:503

This rule misinforms. There is nothing alarming about a site not having encryption enabled. A security pop-up is very alarming to the average uneducated user. It's bad enough with the "this site is untrusted" warnings whenever self-signed certs are involved. I trust that self-signed cert more than any of your "trusted" CAs you fuckers!
Ultimately this is lying to your users because you believe that they do are not technology-literate enough to make the right choice.
I get that making a secure product that is easy for the average mook is hard, but social-engineering your way around ignorance is a lazy shortcut.

The average uneducated user believes that what they do (the pages they visit, the values they enter into forms) is already secure. They have absolutely no clue that the operator of a wi-fi network or their ISP could grab that information with practically no effort at all.

People think they're safer than they are. They would not be misinformed; they are already totally uninformed.

It's exactly the same as the untrusted certificate warning, and the solution is not to pretend that untrusted sites are safe, or that they're more dangerous than totally unencrypted sites. The solution is to treat plaintext HTTP as inherently unsafe, because it is.

Re:503

[omnichad]

Especially on pages that don't collect data and have no form fields on them.

Re:503

Silly. A self-signed cert gives you no guarantees of security whatsoever.

Re:503

[chihowa]

Absolutely. Verification out-of-band on first connect was implied, but I should have stated that more clearly. Ultimately I just use my own CA and DANE, which is simpler and easier to roll out.

If we're going to stick with the root CA system, we really should start fixing it. Allowing multiple CA signatures, pinning certificates, limiting the scope of CA signatures, etc... Any of those options improve the situation. Even culling the root CA list and setting up region specific CA packs would help tremendously. There's no reason my systems should implicitly trust all of the corporations and governments in that list. If I want to shop on Chinese sites, I can download the Chinese CA list, but there's no reason for everybody in the world to have every root CA. This is a weakest-link system by design. Continually adding more links isn't helping!

Re:503

[LessThanObvious]

You're not overreacting. You could say they are going too far, and certainly not everything needs encryption. It's largely unnecessary; if people don't know the difference on their own, then they should never transmit any sensitive data over the internet.

Re:503

[jafiwam]

Yep, same here.

On topic, Google, I appreciate the focus on security, but stop deciding to simply implement however YOU THINK the web should be working. Ok, technically, it's just a change in the browser, but the semantics are obviously meant to "encourage" everyone to switch to HTTPS. However a good idea some of us think that is, it's not up to you.

This is why people are getting freaked out about the power you hold. You're starting to demonstrate that you're not afraid to *use* that influence to simply push things to work however you want them to. You've already done that once already by pushing forward an SSL-related change far ahead of when it really needed to be, and now it looks like you're floating a trial balloon to go one step further.

Am I overreacting here? Or is Google going too far, too fast with this?

They are most certainly going to far.

Last week, with the latest update of Chrome, they started putting a yellow warning triangle on any cert with SHA1 encryption. While SHA1 should be avoided, they are issuing what is basically a big "FUCK YOU" type warning. There were a number of CAs that didn't provide an option for anything else up until last year, so basically Google is forcing site owners to pony up for a new cert ahead of cycle, or do the paperwork to re-issue a cert and then re deploy it.

Likewise, Chrome is now bitching about lack of "public audit records" that have barely begun to be deployed with CAs, Let alone something that every certificate and domain have yet.

The changes mentioned in the article are not the first attempt at screwing with the function of the symbols in the address bar.

That little lock is one of the FEW things that end users have properly picked up on as part of security, now Google is undermining that. Instead of getting certs to "their standards" (who the fuck voted them boss on this?) they are going to end up teaching users what happens up there doesn't matter.

For a long time, people feared the Internet turned into something only the sanctioned big players could play in, assuming it would be media producers, TV networks, large telcos and internet providers.

Instead, we have Google doing it. If they succeed, the "little guy web site" is going to disappear from the internet.

My response is going to be "Chrome doesn't work right anymore, switch to Internet Explorer" Not going to bother complying to a standard that is unreasonable and unwanted at this time. Sure, in the FUTURE, however rushing shit through in a few months is pant-on-head retarded and extremely arrogant at the same time.

Re:503

[jafiwam]

https will not stop mass metadata collection.

It definitely will make the spying harder though...which is a good thing.

Harder for whom?

I am going to bet, that the big players in the data collection game already have a way to sniff traffic in SSL mode because they stole the root keys, certificates, intermediates, and even your certificate a long time ago.

Do you really think Network Solutions or GoDaddy are going to fight off the NSA or Mosad? (if they even _wanted_to?)

Re:503

[jafiwam]

In any case, Google hasn't formally announced a decision yet, it has merely made a proposal public and started a discussion on the subject requesting feedback. The fact that everyone is condemning Google for this proposal vindicates all the companies that keep their discussions private and out of the public eye until they work them out -- all secretly first.

Google has already fucked with the icon in the address bar.

They have started to reject certain encryption protocols and now state "no public audit records available" for quite a number of domains and certificates. These changes went out a couple weeks ago.

So the "but they didn't start fucking with it yet!" comment is not valid. They'll request feedback and then do what they are already planning to do anyway.

Re:503

[omnichad]

Why must any site be unencrypted?

Because we haven't fully moved over to IPv6 and support for SNI is still a bit spotty.

Re:503

So you trust that there is no one malicious between you and the site?

Re:503

Why do we need security to view academic articles, adverts or mindless blather?

To prevent man in the middle attacks where someone along the path replaces the normal blather with malware.

Most people have no need of locking their rubbish bin

Sure, but people don't run around putting bombs in every rubbish bin they can find. There's no money in it. People really do find backdoored/unpatched wireless routers, or set up their own wireless routers with matching SSIDs, and replace content such as injecting malware onto executables. There's money in this.

Re:503

[hairyfeet]

Don't even get me started on the ass cancer that is IP V6, because what we REALLY need with the *.A.A pushing for "IP address equals a person" and Snowden showing us the level of government monitoring is a new IP address schema that doesn't support any kind of NAT and which will assign every device on the net a unique and trackable IP addresss...yeah what can possibly go wrong?

Re:503

[cwsumner]

Also, it will make people accustomed to the pop-up by giving so many false positives. So much that, when it actually matters and they are sending information, they'll just ignore it because it comes up 10 times per day anyway.

This is the real problem. I have seen people ignore the most raucus pop-up warnings, because they were accustomed to them and assumed they were false posives. Any app that pops up too much alarm will harm all of the secure sites.

Re:503

[fulldecent]

> And please do not tell me that I should worry about the NSA knowing that I was looking at restaurants.

Ettercap

So perhaps /. will finally fix its shit

and actually use ssl instead of redirecting you back to http or having messed up certs..

ITS NOT THAT HARD OR EXPENSIVE FOR FUCK SAKES

Re:So perhaps /. will finally fix its shit

[bloodhawk]

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

Re:So perhaps /. will finally fix its shit

[cascadingstylesheet]

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

Exactly. What's the benefit?

There's a time and place for encryption, and Slashdot ain't it.

Re:So perhaps /. will finally fix its shit

The more traffic is encrypted, the more expensive it becomes for attackers to figure out what's worth their effort (either for decryption attempts or for targeting for more intrusive interception attempts) and what's white noise. When only Super Duper Secret traffic is encrypted, only encrypted traffic is worth a look, but when much or all traffic is encrypted, it becomes prohibitively expensive to spy on traffic in transit. The SSL push is to fuck up the signal-to-noise ratio.

Re:So perhaps /. will finally fix its shit

[iggymanz]

Over half the web doesn't need SSL, and the way it is implemented is an overpriced scam

Re:So perhaps /. will finally fix its shit

[bloodhawk]

The more traffic is encrypted the more EXPENSIVE it is to host sites and dish out content, it screws up caching and makes everything harder to diagnose with technical issues . encryption comes at a cost and when the content has not real value it is a pointless cost.

Re:So perhaps /. will finally fix its shit

[heypete]

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

Exactly. What's the benefit?

There's a time and place for encryption, and Slashdot ain't it.

Some folks at Belgacom may disagree.

Remember, SSL/TLS doesn't just protect the privacy of communications, it also protects the integrity of those communications and makes it much more difficult for an adversary to modify the traffic to insert hostile content.

Re: So perhaps /. will finally fix its shit

Free certs have been available for amateurs for some time. Pros have certs and don't have caching problems. Expect some new tools to emerge to make things easier for the less skilled, because the web keeps up wit progress. Your failure to know how to debug your site properly, however, is not anyone else's problem. Encryption is here, like it or not, and your clients will be expecting it from you this time next year. Learn and keep up with the curve.

Re: So perhaps /. will finally fix its shit

you are clueless, caching is a massive problem for SSL sites, it isn't about the site, it is about the consumption of the site. Encryption is great, but clueless people like yourself that push it for no valid reason without understanding the implications and costs just make things worse not better.

Re:So perhaps /. will finally fix its shit

If a 3rd party already has control over your traffic flows where they can inject content then you are already fucked, encryption or not. The value of protecting from this attack method is non existent. It is the equivalent to napalming the worlds forests because a bad person could hide behind a tree.

Re: So perhaps /. will finally fix its shit

[DavidRawling]

OK, Mr AC, care to explain how you plan to cache SSL-encrypted objects? All your caching proxy sees is the "connect me securely to server X" request - after that, it's encrypted and your proxy cannot tell what's being loaded. Worse, since SSL inflates the data sizes of whatever you've requested, your images are up to 50% more data, and your (already compressed with gzip) HTML, CSS, JS etc is the same. So you've added 50% to your traffic for ... potentially nothing.

Seriously, what do you gain (actual, measurable improvements) from switching from http://www.comics.com/garfield... to https://www.comics.com/garfiel...? Nothing but overhead.

And that's leaving aside the fact that SSL no longer guarantees the source server (too many options for MITM server certificate hacks) or security (POODLE etc).

No, make no mistake, this is Google throwing its weight around, screw anybody who doesn't want or need a certificate for their site, or has made a conscious decision NOT to use SSL (not to mention all the corporates with proxies that inspect for malware - now you're mandating SSL MITM by the organisation, or you have a channel for malware into any system).

Re: So perhaps /. will finally fix its shit

awesome, would love to know how these pros have solved caching encrypted content. I have been working with security and networks for 30 years now and I have yet to see a solution for it, but obviously you know a lot more so please tell.

Re: So perhaps /. will finally fix its shit

[bloodhawk]

Pros have certs and don't have caching problems. .

ROFL!

Re:So perhaps /. will finally fix its shit

[phantomfive]

Really Why? what content on Slashdot justify's the need for encrypted content?

Mainly if you're worried about someone stealing your cookie and making posts with your account.
If that's not something that worries you, then there's no need.

Re: So perhaps /. will finally fix its shit

The direct cost of a cert is irrelevant, even if you are paying the ripoff merchants that are VeriSign that is still only a tiny fraction of the management overhead, server overhead and pain involved with encrypted content is where the costs are. If you have a reason for doing it then fine, that pain and cost is worth it. and NO caching is still a massive problem for SSL content, there is no perfect solution for it as SSL content blows out bandwidth utilization as proxies just can't deal with it without resorting to SSL inspection (there own MITM attack) to solve the problem, but that actually introduces a whole new set of management overheads and potential security issues. On the whole this is really just a misguided push that brings more pain for very little gain.

Re:So perhaps /. will finally fix its shit

[ftobin]

People re-use passwords across sites.

Re: So perhaps /. will finally fix its shit

[arth1]

Make no mistake, Google doesn't do this because they have our best interest in mind, but because caching means they can't always tell exactly how many and who saw a particular page or ad. They hate caching unless it's them doing it. Going https instead of http defeats most caching, at the expense of the web sites easily having to serve twice as much data to serve the same number of visitors - some of that from the overhead of https, and some of that because of less caching.

Again, follow the money trail, and you'll get the answer for why Google wants to push everyone to https.
The guys over at squid-cache.org are not amused.

Re:So perhaps /. will finally fix its shit

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

To help reduce the effectiveness of bulk surveillance.

Currently governments can tap glass and even inject attacks over the wire with every click (e.g., GCHQ used someone surfing Slashdot to go after a telco engineer's desktop). The NSA has a program to track users using ad cookies. Telcos have been caught injecting cookies into HTTP sessions to track their subscribers' movements.

All of this goes away if everything is encrypted. Instead of the Powers That Be being able examine entire populations at once, they're forced to focus on individual enemies (in the case of intel agencies) and leave the innocents alone.

Re:So perhaps /. will finally fix its shit

How is caching an issue? People rarely use proxies. CDNs work just fine with SSL and my web client caches just fine.

Re:So perhaps /. will finally fix its shit

[kinko]

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

since you have a slashdot account, I'm sure you don't mind your ISP, their transit provider, and slashdot's CDN seeing your password going over their network in cleartext when you log in.

Even if you use a throwaway password for sites like this (and I hope you do), don't you think it would be better to make a small change that has no effect on how end users interact with the site but somewhat increases their security?

Re: So perhaps /. will finally fix its shit

The content where you aren't having your cookies siphoned off because your phone connected to xfinitywifi run by your neighbor rather than Comcast that you expected

Re:So perhaps /. will finally fix its shit

[thegarbz]

Really Why? what content on Slashdot justify's the need for encrypted content?

Content coming from Slashdot? Very little. It's a public website that is served in a similar way to everyone. But what about content going to Slashdot?

We are living in a world where the west is increasingly persecuting people for ideas. People are being charged over opinions, leakers of information are being persecuted as enemies of the state, and I'm wondering just how many people are logging what it is I said right here right now.

Delivery of open content shouldn't be encrypted unless it's sensitive. That should be optional to the user as well. What is sensitive? That I am browsing an online gun store in a country where firearms are illegal? That I can't look up information about fertilizer online without ending up on some blacklist?

At the very least we should have an option for SSL on any transaction that involves posting information or using credentials. More so for anonymous postings. The option should be there for private browsing as well.

Re:So perhaps /. will finally fix its shit

People rarely use proxies??? wow I am sure the millions of enterprises out their will be amazed to hear that what they are doing is rare. FFS if you don't know anything about technology and its applications why not just refrain from commenting rather than posting absolute shit.

Re:So perhaps /. will finally fix its shit

[techno-vampire]

We are living in a world where the west is increasingly persecuting people for ideas.

There's nothing new about this. If you look at history, you'll see things like this happening over and over. Look at how Rome treated Christians, look at the Spanish Inquisition and their expulsion of Jews, look at the Holocaust, look at Stalin's Great Purge. For that matter, remember that the Pilgrims weren't interested in letting everybody worship they way they wanted, they were interested in creating a colony where everybody had to worship the way the Pilgrims said they should. Up until recently, the US has been an exception to the general trend of mankind to punish anybody who doesn't think the same way as the ruler does, but I'm afraid that this is coming to an end. That doesn't mean that we shouldn't fight the trend, just that we shouldn't fool ourselves by thinking that this is something new in the world, because it isn't.

Re:So perhaps /. will finally fix its shit

[steelfood]

Caching only works with static content anyway, and a good chunk of the web has largely moved onto dynamic, real time or near-real time content.

Also, note that caching methods like Google Cache and Coral Cache have no issues with encryption, as they can access a site via HTTPS separately, store the page's contents, and then serve the information back to whoever requests it. It's not as convenient as automatically caching at an intermediate hop, but it still works for situations where there's a sudden localized spike in traffic to a particular page.

Besides which, now that everybody has easy access to data centers all over the world, caching can (and arguably should) be done by the site administrators rather than by a server admin in between.

So your concerns aren't really valid. If you want to cache on your server and then serve the cached pages from your server as if the client was hitting the real site, well, tough shit. That was only feasible during the innocent days of the internet. Now, it's called MITM and frowned upon.

Re:So perhaps /. will finally fix its shit

[sydbarrett74]

How about the fact that some analyst over at the NSA may take note of the fact that you might like to read articles critical of said three-letter agency and make a note to flag it for future analysis? By knowing what kinds of articles you like to read on Slash, various intelligence and law-enforcement agencies can compile a lot of blackmail material if you were ever to prove a nuisance down the line.

Re:So perhaps /. will finally fix its shit

[beelsebob]

You really don't understand how TLS works if you think it doesn't protect you from someone injecting data into a stream, or from redirecting one to an unexpected endpoint.

Re:So perhaps /. will finally fix its shit

"justifies". Did you attend school?

Re:So perhaps /. will finally fix its shit

[TheRaven64]

Every HTTP request I send to Slashdot contains my cookie, which contains my login credentials. When I do this over a public WiFi network, it's trivial for any passive member of the network to sniff it, as it is for any intermediary. Worse, because it uses AJAX stuff in the background, if I briefly connect to a malicious access point by accident, there's a good chance that it will immediately send that AP's proxy my credentials. I've been using this account for a decade or so. I don't want some random person to be able to hijack it so trivially.

Re:So perhaps /. will finally fix its shit

A good chunk of most sites is images, the vast majority of which are static content. this has a substantial and more importantly completely POINTLESS impact on processing for both the site and for enterprises and environments that utilize proxies.

Re:So perhaps /. will finally fix its shit

[jones_supa]

If a 3rd party already has control over your traffic flows where they can inject content then you are already fucked, encryption or not.

That is not true.

Re:So perhaps /. will finally fix its shit

[strikethree]

Really Why? what content on Slashdot justify's the need for encrypted content? I really don't get this huge push for SSL everywhere. give me SSL when I need it, I don't want SSL for accessing a forum or a news site or just generally browsing the web.

I already moderated in this discussion but I thought this was important enough to reply to.

SSL everywhere defeats fishing expeditions. Your argument is roughly equivalent to, "I did not do anything wrong; therefore, I have nothing to hide".

People express opinions here. Sometimes, ideas are explored. It is very easy to imagine a scenario where you have somehow come to the attention of some government functionary and they decide to examine your communications history.

Your perfectly innocent comments on Slashdot could come back to haunt you. Isn't it better to not let it all get collected in the first place?

Re:So perhaps /. will finally fix its shit

Basically any time you are using public wifi, you are vulnerable to a MITM attack. Properly secured HTTPS is safe, but an HTTP website can be modified in any way the attacker desires.

Re: So perhaps /. will finally fix its shit

It's 2014 and browsers have amazing memory and disk caches. Caching works just fine -- browsers will cache an object and, if instructed to (e.g. by Cache-Control: max-age 1000000000) won't even bother sending a request for it again for a year.

What you're demanding is the ability to put devices in peoples' path that can snoop on and alter every single web request. That's not "caching", that's an enormous amount of easily-abusable power over everyone else. I think everyone would be right to tell you to get to hell.

It's not 1997 any more. Browsers have enormous caches. They save more bandwidth by caching page furniture between requests by a single person than your proxy-cache would save caching the same data across multiple users. Regardless, most people make repeat trips to websites for dynamic content, and no type of caching will reduce the bandwidth on that.

If you have some genuine need for large objects from the web going identically to lots of users, e.g. OS updates, use your OS vendor's solutions for local repositories.

Re:So perhaps /. will finally fix its shit

My job doesn't proxy with their 10gb link. Lots of people stream YouTube for music at work. Our ingress is about 1/5th of our egress. In this part of the USA, you can purchase a 1gb/1gb dedicated fiber business connection for $600/month, but it only comes with a "best effort" SLA. Probably good enough for most.

Re:So perhaps /. will finally fix its shit

[petermgreen]

I see serveral reasons for a site like /. to use ssl.

1: protecting logins, with password reuse being so common every unenrypted site that allows logins is a potential way for someone with a packet sniffer to gather valuable username/password combinations. I suspect this is the main reason behind chromes proposal.
2: protecting integrity, especially on a tech news site someone could inject fake stories as a means of social engineering to get people to install malware. A similar agrument may apply to using browser vulnerabilities to push malware (though on a machine used for general web browsing https would only help there if nearly the whole web was using it). Yet another possibilty is that an attacker rewrites urls so that when people follow links from an unencrypted site to a site that is supposed to be https they get diverted either to a plain http url or to a https url the attacker controls.
3: protecting privacy, a government with oppresive plans may want to know who is active on stories related to government oppression.

Yes there is a price to be paid in terms of reduced ability for service providers to cache, in terms of more admin effort and in terms of CPU time.

Re: So perhaps /. will finally fix its shit

Reflexive paranoia like yours is one reason why we can't have nice things.

Re:So perhaps /. will finally fix its shit

Google is not proposing to make SSL warnings only on password requests.

(As you might know, logins are typically implemented on ssl even if the rest of the site is served over non encrypted link)

Re: So perhaps /. will finally fix its shit

[chihowa]

Reflexive paranoia like yours is one reason why we can't have nice things.

Reflexive paranoia is a trained response to constantly dealing with selfish shitheads. It's the only way to hold onto the nice things we still have.

Re:So perhaps /. will finally fix its shit

People should have the OPTION of enabling SSL when they want to.

SLASHDOT DOES NOT SUPPORT THIS.

Why don't they? Who don't many/most sites?

Re:So perhaps /. will finally fix its shit

[leaen]

Basically any time you are using public wifi, you are vulnerable to a MITM attack. Properly secured HTTPS is safe, but an HTTP website can be modified in any way the attacker desires.

When MITM is possible worrying about self-signed certificates is last of your concerns. Unless you go beyond google proposal and completely disallow http attacker would use zero-day exploit on first http page you load or modify first .exe you download(of course signed by sony.) As now you have keylogger on you computer you do not have to worry how much https protects you.

Re: So perhaps /. will finally fix its shit

you got one thing right, it isn't 1997 any more, back then bandwidth demands were small, now even simple web pages can demand huge amount of content to be downloaded. Caching proxies are an ESSENTIAL part of many enterprise deployments. without them bandwidth requirements literally explode driving massive increases in costs. It isn't about wanting to watch what people are doing, it is about providing services at cost effective levels without a user having to wait 30 seconds for a page that should be almost instant. everything is a tradeoff, if you want 100% encryption, then expect a significant increase in bandwidth requirements and a much slower internet overall.

Re:So perhaps /. will finally fix its shit

[DavidRawling]

And that adequately reflects the rest of the world how? I have customers with multiple 5Mbps connections (literally the best they can get, there IS NO FIBER) at $400/month. They have dozens of users, 10-100MB files to send and receive, every day, and therefore a local caching proxy is the only way they can get any reasonable web access at all. But go on believing the rest of the world is like your little Utopia.

Re:So perhaps /. will finally fix its shit

Yes, instead of $0.000001 cost for serving a web page, it might cost $0.000002 over HTTPS. Really big deal, right?

There is a real value: more security and better protection against mass surveillance, this is worth the extra totally insignificant cost.

Re:So perhaps /. will finally fix its shit

[omnichad]

Enterprise? Install your own CA on the client machines and just MITM proxy it, then.

Re:So perhaps /. will finally fix its shit

[omnichad]

cookie, which contains my login credentials

Contains your session ID. Someone could steal your current session, but not your credentials. I'm sure you could argue that a session ID is a credential, but unlikely. Can be mitigated (if known) by simply logging out of the site and invalidating the session ID.

Re:So perhaps /. will finally fix its shit

[omnichad]

SSL everywhere defeats fishing expeditions.

Not really - most phishing attacks are hosted on compromised servers. They could just as well be serving content via SSL as not.

Re:So perhaps /. will finally fix its shit

[bucky0]

And if you install your CA on the machines, you can still use a local caching proxy.

*Ahem*

So uhhh... Slashdot is a Non-SSL website.

Stupid

[ShieldW0lf]

Encryption has a cost, it isn't free. It increases CPU utilisation and power consumption. It interferes with caching and reduces network efficiency.

This is a dumb idea. A very dumb idea.

Re:Stupid

[by+(1706743)]

Yeah, I really don't care that a webcomic/news site/etc. is non-SSL.

That said, if a website has a password field, it might be a Good Idea to notify the user if it's non-SSL.

Re:Stupid

[jaymz666]

It also increases costs and management overhead.
Does Fred Bloggs lyrics site need to be SSL? Probably not. But throwing a warning up is going to cause fear, uncertainty and doubt.

Re:Stupid

[jellomizer]

CPU and power increase for encryption is negligible for most sites.
The real cost is getting a certificate from a site that the browser will recognize.
Those are expensive especially if you want a site for a hobbie or a supplemental income.

Re:Stupid

[techno-vampire]

I have my own website, but it's just a vanity site. Why do I need to get a certificate and use https?

Re: Stupid

Mobile devices are not abundant with any of these resources. It's not just about the server.

Re:Stupid

[heypete]

CPU and power increase for encryption is negligible for most sites.
The real cost is getting a certificate from a site that the browser will recognize.
Those are expensive especially if you want a site for a hobbie or a supplemental income.

StartSSL offers completely free-of-cost certificates that are widely recognized by browsers to individuals and non-commercial sites. $60/year gets you an ID-verified account and the ability to offer unlimited certificates (they only charge for the validation, certificates are free). A second $60 ($120 total) gets your organization verified, again with the ability to issue unlimited certs.

Let's Encrypt, run by the EFF, will be offering free certificates (starting in 2015) with an easy automatic validation and installation system that makes the technical side of deploying certs super easy.

If, for some reason, that's not satisfactory, Comodo resellers like NameCheap offer PositiveSSL certs for less than $9/year. That's less than a beer at the local bar.

The financial cost of getting a certificate is essentially negligible.

Re: Stupid

Startssl.com offers free certs, and Mozilla et al are working on a new free cert consortium. You can get certs now for free. If you don't understand how, contact your hosting provider, and they should be able to do this for free or a very small charge; if they want an arm and a leg, it's time for you to find a better host.

Re: Stupid

[AvitarX]

Also to rent an ip address isn't free.

Re:Stupid

[skids]

Answer: So that when someone browses to your URL they don't get malware injected into their browser by a MITM.

That said, GP nails it: the problem with SSL is not the tech, it's the that the CAs are money grubbing semi-competent boobs, and the trusted certificate lists are administered by either OS or browser producers leaving a huge open arena for politics and perverse incentives.

Re: Stupid

[heypete]

Also to rent an ip address isn't free.

IP-based SSL hosting hasn't been necessary since the development of SNI nearly a decade ago.

Essentially all modern browsers (IE 7+, Firefox 2.0+, Chrome 6+ on XP [all versions of Chrome on Vista+ support SNI], Safari in iOS 4+, Android 3+, WP 7+, etc.) and servers support SNI.

Several web hosts offer SNI-based SSL/TLS hosting at no additional charge.

Re:Stupid

Encryption has a cost, it isn't free. It increases CPU utilisation and power consumption.

You don't know what you are talking about. The only real minor cost of SSL is in initial session establishment. After that it is virtually free.
And you can minimize the SSL initial session establishment cost by either reusing SSL sessions across connections
or by keeping connections open across requests via SPDY, websockets or vanilla HTTP/1.1.

I regularly load test our servers with 10000s tx/sec and I don't notice the performance difference between SSL and non-SSL load traffic.

Re:Stupid

[Zaiff+Urgulbunger]

Encryption has a cost, it isn't free. It increases CPU utilisation and power consumption. It interferes with caching and reduces network efficiency.

This. Therefore it also uses more energy and is worse for the environment!

I kind of get why Google engineers might think this is a good idea, but the problem is that there's so many sites that don't use or need encryption, that this won't change. And as a result, lots of users will be getting told that site xyz is insecure, when it isn't... and they'll use it anyway.... thus entirely negating the benefit of changing the browser in the first place.

If the vast majority of websites were encrypted, then I could see the logic, but as-is, I'd say....

This is a dumb idea. A very dumb idea.

Re:Stupid

[thegarbz]

But throwing a warning up is going to cause fear, uncertainty and doubt.

People should live with a bit more of all three.

Personally I think the colour scheme is simply wrong. Rather than White for plain, Red for SSL with some minor error (self signed cert), and green for proper encryption, why not go red for unencrypted, orange for encryption with problems, and green for encrypted and verified?

Re:Stupid

[thegarbz]

Answer: So that when someone browses to your URL they don't get malware injected into their browser by a MITM.

I fully agree. So why isn't every website I browse in plaintext presented with a gigantic red warning page which requires 3 clicks to get through?

I think plaintext websites should have a red warning.
Self-signed websites but encrypted should be orange.
Fully encrypted and verified should be green.

Re:Stupid

[toejam13]

Encryption has a cost, it isn't free. ... This is a dumb idea. A very dumb idea.

Agreed. For most sites, there are only two areas where I care about encryption: 1) login authentication and 2) session tokens (cookies). For #1, briefly switching to SSL/TLS is no big deal.

The problem today is that there is no satisfactory solution for #2. In order to encrypt your cookies in your HTTP header, you have to encrypt everything. As previously mentioned, this can have some adverse side effects. It is also complete overkill. What HTTP needs is a middle option.

Enter explicit HTTPS.

When a client requests a protected URL, it can be given a challenge and negotiation method for TLS not unlike how NTLM authentication over HTTP occurs. It should also negotiate what HTTP headers should be private. When complete, the client then sends encrypted data using a PROT: [session id] [base-64 payload] header. If you wanted to be fancy, you could make the system tolerant of upstream proxies or load-balancers inserting their own cookies.

Now you have a system where your session tokens cannot be eavesdropped upon, but yet the payload of the HTTP request can be cached.

Re:Stupid

[thegarbz]

The financial cost of getting a certificate is essentially negligible.

Yep, and their free or cheap certificates don't allow wildcards.

Re: Stupid

I believe all IE versions on Windows XP lack SNI support, including IE8, which is the latest version available. This may unfortunately account for a non-trivial number of users.

Re: Stupid

[POWRSURG]

Minor correction -- no version of IE (or Safari if we want to be technical) on Windows XP supports SNI. IE7 on Vista supports SNI, but not on XP. Also, Android 2.x is still pretty relevant given that it currently represents 9.6% of active Android users. The original Kindle Fire did not support SNI, though I believe with the second generation it did support SNI. Anyone with a pre-BB10 Blackberry also does not have SNI support.

Trust me, I would love to go SNI-based for SSL, but support wise we're just not there yet.

Re:Stupid

[gmack]

That said, GP nails it: the problem with SSL is not the tech, it's the that the CAs are money grubbing semi-competent boobs, and the trusted certificate lists are administered by either OS or browser producers leaving a huge open arena for politics and perverse incentives.

Which is why it was really sad when chrome backed off on supporting DANE

Re:Stupid

[WaffleMonster]

Personally I think the colour scheme is simply wrong. Rather than White for plain, Red for SSL with some minor error (self signed cert), and green for proper encryption, why not go red for unencrypted, orange for encryption with problems, and green for encrypted and verified?

That's easy most websites will appear red and users will tune it out. You have now increased confusion and lost your ability to communicate important information to the user.

Re: Stupid

[gmack]

Bing and Yahoo's web crawlers do not support SNI so you can enable it as long as you don't mind not being indexed on some search engines.

Re:Stupid

[jaymz666]

Why does everyone need more?
So many sites are read only with no exchange of data. No warning is needed for these.

Re: Stupid

The correct thing to do is to serve on http/https both and direct user to https if browser negotiation shows that it is possible.

Re:Stupid

[ArsenneLupin]

StartSSL offers completely free-of-cost certificates that are widely recognized by browsers to individuals and non-commercial sites. $60/year gets you an ID-verified account and the ability to offer unlimited certificates (they only charge for the validation, certificates are free). A second $60 ($120 total) gets your organization verified, again with the ability to issue unlimited certs.

And if you do pay the $60, you can only manage a single legal entity. Which means, if you are the certificate manager of some organization, you can either get certificates in the name of that organizationation (after completing the paperwork and paying the additional $60), or for your own private sites, but not for both at once. Yes, after completing the paperwork for getting certificates for your organization, you lose the right to get certificates for yourself. Crazy, but true!

Oddly enough, if you don't pay anything at all ("class 1 certificates"), you can get certificates for several associations and yourself at once. Of course, then you can't get wildcards or SAN certificates, so you are forced to use SNI (more hassle to set up, and might not work with exotic browsers).

If, for some reason, that's not satisfactory, Comodo resellers like NameCheap offer PositiveSSL certs for less than $9/year. That's less than a beer at the local bar.

Wow, a place where beer is even more expensive than here in Luxembourg! But seriously, I guess the $9/year is for plain certificates, no wildcard and non SAN? In that case it would compete with StartSSL's free offering, rather than their $60 plan. If it actually does include wildcard certificates, I would be interested in details.

Re:Stupid

[Midnight+Thunder]

For the session tokens, their values can be encrypted and they can be tied to an IP address. If the client does not need to do anything special with the cookie values, then the server can do whatever it wants. The session ID cookie may not even need to be encrypted and instead the server side holds which IP address the session is locked to, so it can't be reused.

Re:Stupid

[fleebait]

But throwing a warning up is going to cause fear, uncertainty and doubt.

People should live with a bit more of all three.

Personally I think the colour scheme is simply wrong.

Color coding is so 20th century --
  Why not just play a suitable laugh track audio alarm.

Re:Stupid

It does not matter until your employer learn your religious belief, your hate against kitties and the governmental agencies make cross analysis about your habits to track you.

Re:Stupid

[jones_supa]

It's good to warn about those too, because there's still the risk that the attacker is seeing which specific pages you are viewing.

Re:Stupid

[AmiMoJo]

You should care. If everything is encrypted mass surveillance becomes much harder and more expensive. We have to accept the very small cost of adding encryption to everything as the cost of freedom.

Re:Stupid

Encryption is not very expensive. A single core without any hardware help encrypts at a rate of 1Gbit/sec. With hardware carry-less multiplication, the rate at least 6x higher and with aes specific instruction at least 8x.

The cost of encryption is insignificant in comparison of the available power. If your heavy loaded web site have to send at gigabit, you need to dedicate a core or 0.10 to 0.2 core with specific instruction. If your system need to handle gigabit, it's probably a >8 cores system. You have consequently from 1% to 12.5% (without specific instructions) of your system used by the encryption. Most new systems embed specific instructions to handle encryption, we are thus converging to the 1%.

Re:Stupid

[AmiMoJo]

More likely Google will do a soft roll out, where at first you just get an icon or something. Sites will have a year to enable HTTPS from then, and most will because Chrome is popular and Mozilla will probably copy it too. By the time it becomes more noticeable most hosts will have enabled HTTPS as part of their standard package.

I have no doubt that there will be some pain, but unfortunately it is necessary. We have to fix this, our liberty is at stake.

Re:Stupid

[AmiMoJo]

You don't care about your every action online being monitored and logged for use against you later? I'd prefer all sites to use HTTPS all the time. At least that way the security services will need to target individuals and ask for data, rather than just hoovering up everything.

Re:Stupid

TSA AGENT: Why did you read the subversive lyrics of ...?

Re:Stupid

[DavidRawling]

And forcing SSL does nothing to prevent your employer setting up an SSL proxy with a wildcard certificate, decrypting everything you request, and tracking you anyway. I've set up MITM proxies for companies before, and it's literally 10 minutes of effort in most cases (because the end-users already trust the corporate CA). And if you think the Government can't MITM you as well you haven't been paying attention for the last 12 months.

Re:Stupid

>You don't know what you are talking about.

Agreed, he does not know. When it comes to security and privacy, people are so innocent and ignorant. Benchmarks here. There ain't no such thing as performance issue with encryption. This kind of guy will complain about a 1% to 12.5% cpu usage and in the same time develops apps with an interpreted language having a cost 10x-200x superior to a compiled language.

Re:Stupid

TLS does not solve everything. It helps to solve a part of the issues. But a part is better than nothing. If an external party (your employer) is able to install anything on your computer, you have already given up every single security/privacy anyway. PKI have got know problems BUT security/privacy with TLS > security/privacy without TLS (less people are capable of retrieving the plaintext).

Re:Stupid

Tying a session ID to an IP address doesn't work. Imagine a typical cafe wifi behind a NAT. The web server on the internet only sees 1 IP address. Anyone in the wifi zone that can snoop on traffic can hijack the session ID and your "session tied to IP address" scheme will let them use it.

The only thing that works when you have to transmit in the clear is to have a secret (e.g. shared over HTTPS and retained by the browser) to sign each request (e.g. using an HMAC). That means a lot of client-side coding, and god forbid you miss any of the URLs.

Alternatively, go HTTPS-only and the problem's solved. Go ahead and use an HttpOnly session cookie.

Re:Stupid

> yet the payload of the HTTP request can be cached.

You can cache HTTPS. Go to about:cache and count the number of https URLs in your memory/disk cache. Changing the URI from http to https doesn't affect caching at all.

If by "cached" you mean "can be routed through a 'transparent' proxy which can snoop on and alter all the traffic"... good riddance.

You've invented a harebrained scheme to avoid HTTPS, for a feature that HTTPS does not actually negate. Stop propagating myths, and start using HTTPS for everything.

Re:Stupid

[thegarbz]

What you read is enough to get you persecuted by many governments these days.

Re:Stupid

[thegarbz]

As opposed to white which communicates no information at all?

The point is plain text connections do nothing. The user is quite at ease with this and they shouldn't be. Especially not when there's a text box like this one available for them to type their opinions in to.

Re:Stupid

[drinkypoo]

Encryption has a cost, it isn't free.

Thermodynamics, how does it work!@!@@#!!

It increases CPU utilisation and power consumption.

Negligibly for the user; only slightly for the server end if specialized hardware is used.

It interferes with caching

Only at the proxy level.

and reduces network efficiency.

...and only if you're using proxy caching.

This is a dumb idea. A very dumb idea.

It's still smarter than making it easy to intercept your communications.

You say dumb, but some of us have been calling for end-to-end encryption of all communications since forever. If we have a right to privacy, then we should protect it by default. To me, dumb is enabling a surveillance state by not using encryption. In fact, I call that evil.

Re:Stupid

[swb]

I agree with this in principle, but I worry that there's a certain naivete to it -- making surveillance harder will not cause the security apparatus to give up mass surveillance.

In a world with only limited use of encryption, surveillance was generally a matter of just listening, and targets that used encryption were either immune because of the extra effort and/or low profile but if they were high enough profile, they were attacked through other more resource intensive vectors.

In a world of mass encryption, the security apparatus will instead attack the infrastructure of encryption -- root CAs, encryption technologies and software, neutralizing the value of encryption and eliminating the utility value of it while retaining all the costs to the implementer (CAs, extra CPU cycles, complexity, etc). I think it also destroys trust in some existential way, which may be one of the worst aspects of this.

I think the entire encryption system needs to become decentralized in some way that forces attacks on encryption to be more difficult. Locally generated keys without the need for centralized trust seems to be part of the solution, but the existing CA system provides the trust component making it more difficult to rely on random keys.

Re:Stupid

Here's a perfect example of why this is stupid.

I have several friends whose websites are strictly information. Meaning, they have pictures, some text, and that's it. There are NO links to external addresses on their websites. No Links! Why would their sites need https??? They wouldn't. And Google would seem to mark them as 'unsecure' simply because of that.

This is really an amazingly dumb step across the board by Google. Hell. I don't even see how they can claim half the https websites out there as secure, even as it is!

Re:Stupid

It does has a performance cost. It isn't the CPU or RAM though. It is the bandwidth. Metered connections, and slow (dialup!) connections are the most affected. I still sell dialup where broadband isn't an option.

Metered connection will take a hit too. That is just more bandwidth for something that may or may not need the extra communications. It may be small, per page, but the session management overhead adds up over time,

Re:Stupid

[Kinwolf]

I have an SSL certificate from PositiveSSL, and I had to remove it, simply because Chrome and Firefox would put a HUGE warning that the site wasn't ID'ed. Yeah, you can put SSLfor cheap but unlesss you PAY premium for the identification, they still put a huge warning that scare people away. For a hobby website like mine it's worthless to pay for identification. I hope LetsEncrypt will solve that problem

Re:Stupid

Answer: So that when someone browses to your URL they don't get malware injected into their browser by a MITM.

And how many times does that happen? Most likely scenario for malware injection is via a rogue ad network or a compromised Wordpress or Drupal installation. HTTPS isn't going to protect you against that.

Re:Stupid

$9 for a beer? I'd find a new bar

Re: Stupid

[petermgreen]

The problem with a system of conditionally serving http->https redirects based on known client capabilities (and serving internal links in a way that they stick with the same protocol the user used to request the page) is that once you start redirecting most of your users to https then incoming links (and unless you are really careful probablly some internal links too) will start to use https as people copy and paste the urls.

As well as the direct anoyance to users of older browsers if search engines can't follow incoming links to your site then you are going to be disadvantaged in search rankings.

Re:Stupid

A session cookie isn't a frickin' bag of holding, dammit. It's a "here's the number you gave me" identifier, and should not be trusted on its own. Ever. The contents of a session cookie are supposed to be "useless" outside of the context of the current session with the current user credentials. The only attack they're susceptible to is a replay, and your suggestion to encrypt them does nothing to address this. In fact, you can already stick an encrypted payload into a session cookie, and it can be basically unreadable to any eavesdroppers. But they can send it to the server and have the server decrypt/process/respond in a replay attack with no issues.

Instead of pointlessly encrypting a session cookie, you should just keep a secondary identifier in a hashmap keyed to the session cookie in a server-accessible location (a database, a flat-file, whatever works). For desktop/web clients, I typically use the client IP address collected by the web server during the request connection. For mobile (native, non-web) clients, I typically use the IMEI. Then a tower handoff (and the resulting IP address change) doesn't invalidate the auth token. The point is that you must use something intrinsic to the connection and/or the device making the connection.

If a request comes in that doesn't have both the session cookie and the matching connection/device identifier, it's un-authorized and gets a big fat 401.

Re:Stupid

[FireFury03]

Answer: So that when someone browses to your URL they don't get malware injected into their browser by a MITM.

If your browser is vulnerable to injected malware then you're pretty much screwed already - an attacker just needs to trick you into visiting their site (which can have a perfectly legitimate SSL cert), no MITM injection required.

Re: Stupid

Cloudflare's opportunistic SSL support they are now offering is all SNI-based, and will likely force change, Google's action here will simply aid that effort.

My advice - if you run a server that uses SNI, add another host for your "default" host that warns users that there browser might not support SNI. "Whoops! Looks like you took a wrong turn - or you're using a browser/platform that is ancient and doesn't support SNI. Upgrade, for your interwebs depend on it!"

Re:Stupid

[drew870mitchell]

The hell bar are you going to? My locals are $2. $9 is more than all but the most esoteric limited release craft brews.

Re:Stupid

[toejam13]

For most sites, I don't really care if my browsing activity is being monitored. If some security service wants to eavesdrop on my visits to catfancy.com, let them. For the sites where I do care about privacy, HTTPS is generally an option.

But keep in mind that HTTPS alone only buys you so much. You're still leaking information about the sites you visit via your DNS queries. Also, you're still being tracked at the end-points by ad networks and other systems that log your moves. If privacy is that important, you should also be using an anonymizing proxy service like TOR.

Re:Stupid

[toejam13]

Utilizing a client IP address as a means of identification is highly unreliable unless that client is on the same network as you. Proxy servers, cache servers and NAT devices can masquerade multiple devices under a singular IP address. Worse, some organizations load-balance outbound connections across an array of those masquerading devices. Every TCP connection could originate from a different IP address. The same is true when the client itself is multi-homed, such as a mobile device utilizing both cellular and wifi simultaneously.

And while the payloads of cookies can be hashed to obscure sensitive information that is stored in clear-text, it does not prevent the theft of the cookie itself. I may not know the true value inside of it, but I may not care. I might want it just to tailgate on an authenticated session. To avoid that, you need to encrypt both the cookie payload and its name.

Re:Stupid

[MrL0G1C]

If everything is encrypted mass surveillance becomes much harder and more expensive.

So the outcome is more spies and higher taxes then! And more energy used - not environmentally friendly. Why encrypt comments if they're going to be displayed publicly?

Re:Stupid

[skids]

Since many people browse from poorly secured wifi segments, it can happen more than you might think. Also, since a large proportion of wired networks do not have their first-hop-security features turned on (and can't in the case of ipV6 because they lack the features) opportunities are readily available.

Re:Stupid

[skids]

no MITM injection required

You say that like MITM is harder than setting up a server and socially engineering people to it. It isn't these days.

Re:Stupid

[q4Fry]

It's good to warn about those too, because there's still the risk that the attacker is seeing which specific pages you are viewing.

Humor my ignorance for a moment: Even if malicious party X can't see the content itself that you are being served, can't they see what resource you requested... or at least what server you requested it from?

Isn't that almost the same (unless the content changes based on who you are logged in as, at which point I agree: encrypt the traffic)?

Re:Stupid

[petermgreen]

but the problem is that there's so many sites that don't use or need encryption, that this won't change

The problem is that there are many sites were the operators think "we don't need any encyrption" or "we only need to encyrpt specific pages" but aren't looking at the bigger picture.

For example a web store, many web stores only use ssl for their payment pages (or redirect to a third party for payment). They think this is fine as in normal operation the credit card information is encrypted but it gives plenty of scope for an active attacker to steal the credit card information.

Re:Stupid

[jaymz666]

The burden for this should be placed on each website operator, and not the end user who is browsing?

Re:Stupid

[Zaiff+Urgulbunger]

Perhaps it would be better to highlight the insecurity either: (1). when there is a form, _or_ when the user starts using the form, OR (2). when the user enters data that looks like name/address/cc-number?

Re:Stupid

[by+(1706743)]

Perhaps, but I would argue that SSL'ing websites isn't really the right tool. If you want *everything* encrypted (your IP address, your DNS queries, etc.), then I think a fundamentally different tactic is required.

My point about not needing certain sites SSL'd is that if I'm on my favorite webcomic's page, it really doesn't matter if you're sniffing encrypted or unencrypted packets -- you have gained essentially the same information, as the website and the specific content I'm viewing are more-or-less the same. This is of course not the case with richer dynamic content (email, wikipedia, etc.).

Re:Stupid

[petermgreen]

What you propose would not stop the attacker diverting users to the WRONG https site, this is especially an issue with sites that use third party payment processors. There is nothing to stop an attacker registering say "angelpay.co.uk" (an unregistered domain at the time of writing) and setting up what looks like a payment processing site there.

Re:Stupid

No. They just get malware injected by a rogue ad syndicate instead.

Re:Stupid

[ShieldW0lf]

Freedom does not require you to operate in secret. If you feel the need to operate in secret, either you need to fix your culture, or you need to fix yourself.

Preventing misrepresentation is a social positive. Preserving secrecy is a social negative. Compromises have to be made, but protecting your secrets is not a noble goal in and of itself, shouldn't be necessary in a free society, and in fact represents a threat to other peoples freedom.

Re:Stupid

[ShieldW0lf]

Yeah, set up encrypted WebRTC with multiple peers from a mobile device, and see now negligible it is.

You don't know what you're talking about.

Re:Stupid

protecting your secrets is not a noble goal in and of itself, shouldn't be necessary in a free society, and in fact represents a threat to other peoples freedom.

Let's test that theory, shall we?

I'm thinking of a number between one and ten.

I will not tell you what that number is. It's a secret that I'm keeping from you and the entire world. Neither you nor anybody else on Earth will ever, under any circumstances, learn what that number is. That knowledge is forever locked away and hidden from you.

Now, if your statement is true, then you should be able to explain how your freedom is threatened - in a real and tangible way - by the fact that you don't know what number I'm thinking of, and how that threat would be removed by somehow forcing me to divulge what number I'm thinking of. And you should be able to support that explanation with concrete facts

On the other hand, if you cannot explain the threat I allegedly pose by not telling you my number, then the only conclusion it is possible for anyone (including yourself) to draw from your statement is that there is no threat, and that you therefore have an agenda that you're hypocritically hiding from us.

So what's it going to be?

Re:Stupid

[ShieldW0lf]

Now you're just being stupid.

Dictionary: Adj: Secret: kept from the knowledge of any but the initiated or privileged

If you have a secret that you share with just a few and keep the rest of us in the dark, that is a conspiracy, and conspiracies are a threat to peoples freedom.

Is it a number? Is it a plan to seize control over the water supply? I don't know, but you've expended extraordinary effort to keep me from knowing what it is, which means I can't assure myself that I'm secure and further implies to me that if I knew what you were doing I'd be motivated to put a stop to it.

Your secrets keep me from having access to concrete facts, and that is the reason that they represent a threat.

Now, fuck off, coward.

Re:Stupid

[pathological+liar]

This is a dumb idea. A very dumb idea.

Since we're assuming MITM, what happens when I inject javascript into the page? Even assuming the browser prevents me from leaking the PROT header, I can still have it make arbitrary requests using your session.

What happens when I just block the original response, pretend your session died, and serve up a bogus login page that gives me your credentials?

Re:Stupid

Dictionary: Adj: Secret: kept from the knowledge of any but the initiated or privileged

Yes. And in this case, "the initiated or privileged" means me, and me alone. But how does that make it a threat to freedom?

If you have a secret that you share with just a few and keep the rest of us in the dark, that is a conspiracy, and conspiracies are a threat to peoples freedom.

Again, how? See, you can't just restate your premise as an argument in favor of that same premise. That's circular reasoning.

Is it a number? Is it a plan to seize control over the water supply? I don't know, but you've expended extraordinary effort to keep me from knowing what it is, which means I can't assure myself that I'm secure and further implies to me that if I knew what you were doing I'd be motivated to put a stop to it.

So your reasoning is "I don't know exactly what it is, therefore I will make an argument from ignorance to pretend I think you're doing something else entirely". The fact is, there is no implication to my secrecy, only an inference that you have chosen to make to advance your hidden agenda.

Also, you have a very low bar for what constitutes "extraordinary effort", as apparently "not telling you what number I'm thinking of" qualifies. That certainly explains why you never put any real effort into thinking through anything you say.

Your secrets keep me from having access to concrete facts, and that is the reason that they represent a threat.

Again, restating your premise. Circular reasoning. How is your freedom threatened by the fact that you don't know what number I'm thinking of? And no, "your number might be a plot from a Batman comic!" isn't an answer.

Now, fuck off, coward.

Or what, you lying, hypocritical, intellectually lazy piece of shit? What are you going to do? Inadvertently illustrate that I'm right again?

A purely rhetorical question, of course. Obviously that's what you're going to do.

Re: Stupid

[ShieldW0lf]

You cling desperately to your stupid "I'm thinking of a number" straw man because you know that I'm right. Everything that hasn't been confirmed not to be a threat is a threat. You secure your turf, survey it regularly, and build a wall in the hopes it will be good enough to deal with the threat of the unknown.

You know this, of course. Children could figure this out. You're taking this position because you seek to work against the interest of your neighbour and you don't want the task to become more difficult.

You're selfish, and it's as plain as day for all to see.

Re: Stupid

You cling desperately to your stupid "I'm thinking of a number" straw man because you know that I'm right.

A strawman is a deliberate distortion of your opponent's position. What I have put forth is the application of your theory to a concrete real-world example.

You are reacting with hostility because you know that I'm right. Your inability to deal with this simple problem reminds you that all you've done is hastily cobble together a piss-poor justification for your own selfish desires to attack others' freedom. This makes you furious with yourself for being an idiot - and rightly so. But you're also too immature to deal with that anger appropriately, so you've chosen to comfort yourself with the convenient lie that it's me you're really angry at. And even that doesn't work, because the same stupidity that makes you hate yourself in the first place also makes you too incompetent to effectively attack the messenger.

Everything that hasn't been confirmed not to be a threat is a threat.

Then prove it. Explain the threat of my secret number. Explain the danger that currently exists, and how it would be abated if I divulged what number I'm thinking of.

Or, continue to throw screaming tantrums that reveal your discomfort with the cognitive dissonance you have created within yourself. Those are your only possible choices.

And no, that's not a false dichotomy. And yes, that is what you were going to say. Either your "all secrets are bad" position can explain the threat of my secret, or it's wrong and some secrets are okay to keep.

You will now commence with accidentally admitting it's the latter.

Re:Stupid

Encryption has a cost, it isn't free. It increases CPU utilisation and power consumption.

Have you seen the cost of rendering a typical web page these days? Do you know what is involved in JITing one single line of Javascript?

You are complaining about the energy cost of headlights on a car moving at 75 MPH.

Re:Stupid

[toejam13]

This is a dumb idea. A very dumb idea. Since we're assuming MITM, what happens when I inject javascript into the page? Even assuming the browser prevents me from leaking the PROT header, I can still have it make arbitrary requests using your session.

Encrypting the content length header and adding an encrypted checksum (or cryptographic hash) of the payload would help detect JS injections, URL rewrites or other forms of malicious modification. Marking your user session cookie as HttpOnly should also help sandbox it from JS hijacking.

What happens when I just block the original response, pretend your session died, and serve up a bogus login page that gives me your credentials?

Introducing a new URL protocol for HTTP-Mixed could help prevent that. It would indicate that HTTP header encryption was a requirement and that the client refuses to proceed without it. So when the user hits refresh on their client after an hour, your bogus site would then need a counterfeit certificate in order to survive the PROT ClientSSL <-> PROT ServerSSL challenge.

The best way to deploy such a system would be to use HTTPS for your site's landing page. If the client's browser supports HTTPM, you could step down to it for pages deeper in your site. Otherwise, stick with HTTPS.

In some ways, HTTPM would be analogous to FTPES in the FTP/FTPS world. FTPS clients know to issue an AUTH TLS command shortly after starting an FTPES connection and refuse to continue if a FTP-503 Unsupported server response or a failed TLS handshake occurs.

Re:Stupid

[thegarbz]

What burden? Providing a user with the ability to browse a website without everyone knowing?

Or the burden of a completely innocent visit to a website screwing up someone's life due to government / other overreaching?

You're essentially telling the people that the only safe way of researching is to not research and just accept what they are told by a 3rd party.

Re:Stupid

This is an extremely dumb argument.

If website owners really cared about bandwidth and CPU overhead, they would use static HTML as much as possible and not make >1MB websites full of javascript and CSS crap to display one low resolution picture and few paragraphs of text. In reality we aren't living in 90's anymore, bandwidth and processing power is extremely cheap these days and this is evident from the amount of bloat on the web.

There are two very good reasons why we should use HTTPS everywhere:
1. It's a weapon against mass surveillance. Yes, information about which news items, forum posts, blog entries, etc. you are reading is important and could be used against you in the future.

2. It improves security by making session hijacking much more harder, so a three-letter-agency can't redirect your requests to their servers to inject malware.

Those who are saying that their vanity site doesn't need HTTPS: if you are running a vanity site, why should you care wherever the Google search marks your site as secure or not?

Re:Stupid

[jaymz666]

What burden? The monetary and time cost of maintaining certificates for sites that just don't need them.

If you're worried about the government watching everything you do then get a VPN service that encrypts all traffic so they can't even see what servers you are connecting to.

Encrypting every single website is a huge burden on every single web operator.

Re: Stupid

[heypete]

Yeah. Beer in Switzerland isn't cheap. :/

Re: Stupid

[heypete]

Did you include the necessary intermediate certificates in your server config? If you don't then browsers can't verify that the cert is legit. IE tries to be smart and can download many (but not all) intermediates automatically, but that's not something you should rely on.

I have never had any issues with PositiveSSL using any browser, so long as the intermediates are sent by the server.

Re: Stupid

[heypete]

Switzerland. The trains are great but the beer's bloody expensive.

Re: Stupid

[ArsenneLupin]

Yeah. Beer in Switzerland isn't cheap. :/

I know. So expensive that people cannot even afford mustard to put on their sausage along with it ...

Re: Stupid

[omnichad]

nearly a decade ago, but not viable until April - when XP was officially deprecated.

Re:Stupid

[heypete]

And if you do pay the $60, you can only manage a single legal entity. Which means, if you are the certificate manager of some organization, you can either get certificates in the name of that organizationation (after completing the paperwork and paying the additional $60), or for your own private sites, but not for both at once. Yes, after completing the paperwork for getting certificates for your organization, you lose the right to get certificates for yourself. Crazy, but true!

Huh. I didn't know that, as I only have ever done the individual verification. It's not uncommon for someone to wear many hats (i.e., to be affiliated with several organizations). It'd certainly be nice if their system allowed for a single individual account to switch between different "identities", so that one could issue certs for themselves or any number of organizations with which they're affiliated and which they've validated with StartSSL.

Have you suggested such an improvement to them?

Oddly enough, if you don't pay anything at all ("class 1 certificates"), you can get certificates for several associations and yourself at once. Of course, then you can't get wildcards or SAN certificates, so you are forced to use SNI (more hassle to set up, and might not work with exotic browsers).

Technically, yes, but policy-wise, no: Class 1 certs are not intended for commercial use.

Wow, a place where beer is even more expensive than here in Luxembourg! But seriously, I guess the $9/year is for plain certificates, no wildcard and non SAN? In that case it would compete with StartSSL's free offering, rather than their $60 plan. If it actually does include wildcard certificates, I would be interested in details.

It's hard to directly compare the two offerings, as StartSSL charges for validation but you can issue numerous certificates at no additional cost. Other CAs charge on a per-cert basis.

As you suspected, the $9 offering from PositiveSSL is for a single, non-wildcard, non-SAN certificate. NameCheap also sells Comodo PositiveSSL multi-domain certs for $30/year for up to 100 domains, which is quite a reasonable price. Of course, those certs are domain-validated only. Organization-validated multi-domain certs start at $90/year. That's cheaper than StartSSL, but only gets you a single cert with multiple SANs. If you needed more than one, StartSSL is the more economical choice. Wildcard certs are also available, with Comodo wildcards costing $94/year.

Re:Stupid

[ArsenneLupin]

Huh. I didn't know that, as I only have ever done the individual verification. It's not uncommon for someone to wear many hats (i.e., to be affiliated with several organizations). It'd certainly be nice if their system allowed for a single individual account to switch between different "identities", so that one could issue certs for themselves or any number of organizations with which they're affiliated and which they've validated with StartSSL.

Indeed...

Have you suggested such an improvement to them?

Yes, of course. They wouldn't budge. Their suggestion: just use the "free" plan instead, there you can wear as many hats as you like (which I did... after this incident they never saw another cent from me). Weird way of promoting your business...

And that's another issue: they don't take any suggestions! For example: some (all?) of their automated mails are formatted as a single long line. I suggested to them that general usage is to stay below 78 characters per line. Should be easy to fix, as they probably use some kind of .txt template, where they could just insert a couple of breaks. Answer: well, at least our mails don't contain a virus (or something equally silly). Hey that's great! But it would be even nicer if the lines were shorter as well. A year afterwards, the issue was still not fixed.

Technically, yes, but policy-wise, no: Class 1 certs are not intended for commercial use.

Well, it's not commercial use, it's for several non-profits and one political party.

As you suspected, the $9 offering from PositiveSSL is for a single, non-wildcard, non-SAN certificate.

Yeah, that's the kind of certificate that you can for free from StartSSL (class 1)

NameCheap also sells Comodo PositiveSSL multi-domain certs [namecheap.com] for $30/year for up to 100 domains, which is quite a reasonable price.

Yeah, that would be reasonable. Can these domains be wildcard, or does each domain only have a single host?

Wildcard certs are also available [namecheap.com], with Comodo wildcards costing $94/year.

Interesting...

Re: Stupid

Your surrender is graceless, but I acknowledge and accept it anyway.

Re:Stupid

[thegarbz]

What burden? The monetary and time cost of maintaining certificates for sites that just don't need them.

Again who are you to decide what someone else is being persecuted for?

If you're worried about the government watching everything you do then get a VPN service that encrypts all traffic so they can't even see what servers you are connecting to.

Oh right it's that easy. I forgot about that. I'll just go to China and fire up Tor... no blocked, I'll use my usual VPN... no blocked. Maybe I'll SSH and tunnel out of my company's network... nah blocked.

The problem with forcing users to use client side solutions is that they are far more easy to intercept and far more difficult to use than generic encryption on a service level for all information. Then there's the "something to hide" problem. A VPN user has something to hide. A person using HTTPS just like every other person using HTTPS may or may not have anything to hide. You can't draw conclusions based on behaviour if an entire population does the same thing.

Encrypting every single website is a huge burden on every single web operator.

I think you have a very skewed definition of the word "huge" given the task of setting up a website, or the task of setting up a business at all. Compared to domain + DNS + creating a website + registering a business + meeting local regulations for that business, setting up SSL is about one of the few things that people can do themselves following a step by step how-to. Or they can treat it like any other non-core business activity and outsource it, or they can like any other only partially tech savvy person use a webhost which makes this a tick and flick exercise.

Anyway I just woke up so I'm going to go and undertake the huge task of getting some breakfast.

Re: Stupid

[ShieldW0lf]

How about I just declare my decision to oppose you at every turn for the rest of my life, and when you escalate, re-escalate in response, for the rest of my life, and we just leave it at that?

Secrets coming out all over these days... good luck, you'll need it.

Re: Stupid

You don't actually oppose me at all, because the fact is you fully agree with me. You have your secrets too, and foremost among those is the fact that you're glad that those secrets are being kept safe by the efforts of people who are smarter and better than you. You would never want to live in the world you pretend to strive for.

But thanks for admitting yet again that you're full of crap.

Re:Stupid

[fulldecent]

> So why isn't every website I browse in plaintext presented with a gigantic red warning page which requires 3 clicks to get through?

They do, it's called advertisements injected into your page by Comcast when browsing on xfinitywifi wifi hotspots

Re:Stupid

[Rich0]

StartSSL offers completely free-of-cost certificates that are widely recognized by browsers to individuals and non-commercial sites.

Sure, as long as you don't try to change the key on your pre-heartbleed webserver. They charge money for that, as far as I understand it.

The major downside to this..

[DigitAl56K]

The major downside to this is promoting the idea that an https connection is "secure", because especially when it comes to https, there are so many different attacks to level against both an end user and a host that we'd be better using a risk grading system.

Re:The major downside to this..

[thegarbz]

Yep, the solution is clearly to use plaintext for everything.

I understand what you mean but we should be risk grading ALL browsing. Not just bringing up warnings for encrypted content which is not perfectly signed by some money grabbing authority.

Re:The major downside to this..

[jones_supa]

The major downside to this is promoting the idea that an https connection is "secure", because especially when it comes to https, there are so many different attacks to level against both an end user and a host that we'd be better using a risk grading system.

A security feature does not have to be perfect to provide value. The user is still significantly more protected with HTTPS than with HTTP.

Re:The major downside to this..

[strikethree]

You do not understand the danger of having everything you look at, read, say, and/or comment on being catalogued (sp? really?) and analyzed.

There have been numerous books written that explore this idea which implies that I can not do it justice in the limited space available here.

I think you should take a step back and look at what you are really giving up by not encrypting everything. Yes, if "they" really want you, such lame encryption tactics and strategies will not help. It will help a LOT against untargeted (wtf? no such word? Firefox is REALLY getting on my nerves.) dragnets.

Re:The major downside to this..

Yep, the solution is clearly to use plaintext for everything.

Nobody said or even implied that.

I understand what you mean but we should be risk grading ALL browsing. Not just bringing up warnings for encrypted content which is not perfectly signed by some money grabbing authority.

You clearly do not understand, nor did you spend more time thinking about it than was necessary to post your knee-jerk reaction.

Re:The major downside to this..

[DigitAl56K]

A security feature does not have to be perfect to provide value. The user is still significantly more protected with HTTPS than with HTTP.

That is not in dispute. But even with HTTPS there are many risk factors that can be evaluated, including characteristics of the HTTPS connection itself and other factors beyond that, that could be used to present a more accurate assessment of "risk level" to an end user that is much better than teaching the falsehood that "if it's https, it's secure and I don't have to worry". Because when everything is https, the web will definitely be neither secure nor "safe".

Fuck google

seriously, fuck google

Not a bad idea.

[mmell]

It won't do any real long-term good, but not a bad idea. Sadly, my experience is that the average internet user won't know or care what SSL even is. C'mon - we had a hard enough time getting the internet's user base to understand "locked green padlock = good, unlocked yellow/red padlock = how bad do you want your pron?".

.

.

<----------------- You must be at least this intelligent to ride the internet.

.

.

.

Re:Not a bad idea.

[thegarbz]

"locked green padlock = good, unlocked yellow/red padlock = how bad do you want your pron?".

And yet that's not how any browser works so users are right to be confused.

This again?

[fahrbot-bot]

Currently only about 33% of websites use HTTPS, according to statistics gathered by the Trustworthy Internet Movement which monitors the way sites use more secure browsing technologies. In addition, since September Google has prioritised HTTPS sites in its search rankings.

Um... Secure != Trustworthy and, seriously, most web connections DO NOT NEED to be HTTPS.

Furthermore, I cannot filter HTTPS via my proxy filter (Proxomitron) to strip out annoying things, like the fucking Google sidebar and other forced "user experience" settings - which is why I use nosslsearch.google.com ...

Re:This again?

[iamacat]

Every web connection needs to be HTTPs, to keep random people from snooping on which URLs you visit. Problems only multiply with every cookie that discloses information or correlation between different requests.

You can install a custom root certificate on your client and have your proxy work as usual.

Re:This again?

Can you guess why google is pushing this?
It increases their value as an "identity services" company. That's why.

Now tons of people browse with chrome so they get your search prefetch ung for autocomplete etc and their competitors get dick.

Note: Google's execs labeled them an identity services company.

-an AC

Re:This again?

[WaffleMonster]

Every web connection needs to be HTTPs, to keep random people from snooping on which URLs you visit. Problems only multiply with every cookie that discloses information or correlation between different requests.

Fire up wireshark, sort by DNS and pick any well known website at random. why are there all these queries for dozens of others sites? Their all leaking tracking cookies and all kinds of bullshit to many DOZENS of providers who have nothing to do with providing content your browser requested their only job is to stalk your ass wherever you go on the Internet. Turning on HTTPS won't make them go away.

Just sitting on the wire and collecting destination addresses, amount of data transferred and timing stats is more than enough to piece together exactly what your doing even while everything is encrypted.

Re:This again?

[steelfood]

The secure vs trustworthy issue is a fundamental flaw with HTTPS where both encryption and authenticity are meshed into the same protocol. Most places don't really need its authenticity validated (and really, the only way authenticity can be assured these days is with certificate pinning and advanced notice of cert changes, so the authenticity features of HTTPS aren't as reliable as they appear). But it'd be good to have the communications itself secure. But there aren't any alternatives, so even if it's a wrecking ball, it's better than nothing.

As for proxy filtering, you could always try filtering on the client side instead. For example, AdBlock allows you to block individual externally-loaded elements. And I don't use it myself, but I hear GreaseMonkey may have the functionality you're looking for.

Re:This again?

[WaffleMonster]

The secure vs trustworthy issue is a fundamental flaw with HTTPS where both encryption and authenticity are meshed into the same protocol.

This is doublespeak. Encryption without authentication is an illusion.

Re:This again?

[bombman]

So you won't mind the cable company injecting javascript to bombard you with adds _and what not_?

Re:This again?

[TheRaven64]

It depends on your adversary model. Encryption without authentication is good protection against passive adversaries, no protection against active adversaries. If someone can get traffic logs, or sits on the same network as you and gets your packets broadcast, then encryption protects you. If they're in control of one of your routers and are willing to modify traffic, then it doesn't.

The thing that's changed recently is that the global passive adversary has been shown to really exist. Various intelligence agencies really are scooping up all traffic and scanning it. Even a self-signed cert makes this hard, because the overhead of sitting in the middle of every SSL negotiation and doing a separate negotiation with the client and server is huge, especially as you can't tell which clients are using certificate pinning and so will spot it.

Re:This again?

Dude, I hate to be the one to have to tell you this, but Proxomitron has not been maintained since June 2003. That's 11 years. I used it until about 2005 when Greasemonkey came out.

Oh, and Greasemonkey works with HTTPS.

p.s. I think I can hear you whining about Firefox using too much memory for your PC with 512 MB of RAM. If so, you can probably go pick up a used (former business lease) PC with 1GB for about $100 at your local mom&pop. And you can go buy a 4GB stick for $40. That means you can have a modern PC for less than $150.

Re:This again?

I cannot filter HTTPS via my proxy filter (Proxomitron) to strip out annoying things

Unless you have a specific situation blocking you from applying it, you can (see docs\readme.txt).

Find and place the libeay32.dll and ssleay32.dll DLLs into the proxomitron folder and you're good to go.

Re:This again?

[drinkypoo]

Fire up wireshark, sort by DNS and pick any well known website at random. why are there all these queries for dozens of others sites?

Because you're not running ghostery. HTH, HAND.

Re:This again?

[fahrbot-bot]

So you won't mind the cable company injecting javascript to bombard you with adds _and what not_?

Cox already does this with their "browser alerts" by injecting HTML. Shows up with either HTTP or HTTPS - I had to block the source hosts at my router. Regardless of their intentions, this is, of course, unfriendly - to say the least.

Re:This again?

I agree: Every web connection needs to be HTTPS. If HTTPS isn't perfectly secure, we'll work on the next generation of connection security to make it better. But it's what we have available now and it's idiocy that we don't use it everywhere for everything which we don't want to broadcast to even casual snoopers.

Re:This again?

But you can't inject crap. with non-encrypted you can inject malware/advertising or modify information. even if the page is just a static html with yo-momma jokes.

The web is shrinking

[hessian]

Problem with the web: too many websites with too much content, not one answer that can be given consistently to similar questions:

Solution: standardize the web, with Wikipedia, Google Knol, etc. and squeeze out those smaller websites so they stop mucking up the corporate profits.

When the sheep get warm and comfy enough, yank anyone who doesn't dish out for SSL, and make it so that it costs a thousand dollars a year to reasonably publish on the web, instead of the pennies it did a few years ago.

Then, you have total dominion and total control. For much profit!

Re:The web is shrinking

[Dutch+Gun]

In fairness to Google, they're also pushing a new standard that will allow free SSL certs to be used by anyone who wants it. Search for Let's Encrypt for more info.

Re:The web is shrinking

Well, in fairness to everyone ELSE, let's wait until they actually HAVE free certs that don't involve hoop jumping and hidden fees and loss of cacheing and doubling the network transfer load BEFORE we go sucking Googles warty corporate cock, eh?

Re:The web is shrinking

As long as the CA is located in a country under control of NSA the idea of increased security looks quite lame.

Re:The web is shrinking

[TheRaven64]

The 'brought to you by' box on that site lists Mozilla, Akamai, Cisco, EFF, and IdenTrust. I don't see Google pushing it. They're not listed as a sponsor.

That said, it is pushing Certificate Transparency, which is something that is largely led by Ben Laurie at Google and is a very good idea (it aims to use a distributed Merkel Tree to let you track what certificates other people are seeing for a site and what certs are offered for a site, so that servers can tell if someone is issuing bad certs and clients can see if they're the only one getting a different cert).

Re:The web is shrinking

[Midnight+Thunder]

The problem is when Google decides something is good for everyone they don't give us ways to switch back to the old behaviour, even if that change feels like a middle finger. You can have a thousand people open bug reports and Google devs will politely tell you that they know better than everyone else. Sometimes it makes me want to grab a bunch of eager developers and fork Chrome. In the meantime there is still Firefox and Opera to move to.

Re:The web is shrinking

[Dutch+Gun]

It looks like Google's certificate transparency logs may be relevant to the Let's Encrypt initiative, but it seems they're not directly sponsoring that initiative. Thanks for the correction.

Re:The web is shrinking

Google isn't listed as a sponsor at Let's Encrypt.

Good idea only if ...

[sk999]

I applaud this move, but ONLY IF https websites are also flagged as being insecure (typical example follows).

https://www.whynopadlock.com/

Re:Good idea only if ...

[tepples]

Browsers already show warning icons next to the "https" in the URL bar when they detect mixed content: a triangle for CSS or images or a shield for scripts.

Google Domains Free SSL

[Loconut1389]

If google starts their own CA and gives away DV SSL certs (all sorts, counting wildcard, multi-domain), then I'm on board more or less. SSL should be free.

Future chrome browser warning

[webanish]

*Warning, insecure content!* This website doesn't have a NSA backdoor, and hence we cannot verify the americanness of the content. Terrorists may be hatching a plot to blow up something here. Or even worse, normal people might be talking how we fucked the web up. >OMFG! Take me out of hereI understand the risks

Re:Future chrome browser warning

[lgw]

hahaha! A website with no NSA backdoor. You told a funny!

Annoying to Self Hosters

I run a personal site off a laptop on my home connection. I had HTTPS enabled, but when Firefox added a warning against all self signed certs, users were constantly complaining that my website was down or broken. So I turned it off. Now Chrome users are going to be complaining that my site is broken.

I guess the solution is to remap all Chrome users to HTTPS and Firefox to HTTP. IE users can go where they please. I don't get Safari users. I hate to say it but IE is slowly, very very slowly, becoming the best browser.

Re:Annoying to Self Hosters

[koan]

I was under the impression you could get signed certs for free or for as low as $5.99,
https://au.godaddy.com/offers/...

and have you looked into this:
http://tack.io/ (Moxie Marlinspike)
Not sure if that is useful for you.

Re:Annoying to Self Hosters

[spitzak]

Chrome also complains about self-signed https, so you lose. Sorry.

Re:Annoying to Self Hosters

I run a personal site off a laptop on my home connection. I had HTTPS enabled, but when Firefox added a warning against all self signed certs, users were constantly complaining that my website was down or broken. So I turned it off. Now Chrome users are going to be complaining that my site is broken.

I guess the solution is to remap all Chrome users to HTTPS and Firefox to HTTP. IE users can go where they please. I don't get Safari users. I hate to say it but IE is slowly, very very slowly, becoming the best browser.

Remap Chrome uses to the FireFox download page.

Problem solved.

Intranet

[darkain]

Sweet! Now I'll need to get SSL keys for all of my web basic administration consoles on my already secured private LAN, or else management will yell at me. This sounds GREAT!

Re: Intranet

Why haven't you already created your own CA for your intranet and provisioned out the certs to your network's browsers? You should already have been doing that. Also, is Chrome your best choice for your work browser?

Re:Intranet

wifi

Re:Intranet

[TheRaven64]

How is your LAN secured? If it's wired, then I assume that you know about ARP poisoning attacks. If it's wireless, then I assume that your post was intended as a joke.

Re:Intranet

Yeah. Now I gotta buy managed 801.1X switch for my home LAN, just in case a burglar put a rouge computer on my LAN and wants to steal my data via an ARP poisoning attack. What are the chances of that? Excess paranoia is often associated with mental illness BTW.

Re:Intranet

[ArcadeMan]

If a burglar puts a rouge computer on your LAN, it will be very easy to spot. It will be the red one.

Malware

[manu0601]

I see the value of the proposal: it is easy to inject malware inside a HTTP stream. Snowden documents taught us that the NSA and CGHQ do it over internet backbones. Infected machines also do it when it is easy (hint: WiFi). Pushing towards HTTP/SSL address that

However, with only 33% of the sites that are SSL enabled, they are just going to show warnings everywhere, and users will quickly learn to ignore them.

Re:Malware

[ArsenneLupin]

I see the value of the proposal: it is easy to inject malware inside a HTTP stream.

Only when the attacker is sitting on the path from the browser to the server. Not when listening in on the side-lines.

... and sitting on the path is the exact definition of man-in-the-middle, which allows to take advantage of poor certificates. And how many people properly understand certificates?

However, with only 33% of the sites that are SSL enabled, they are just going to show warnings everywhere, and users will quickly learn to ignore them.

Exactly. And once users are trained to ignore warnings, they will ignore them too if they are about bad certificates, so nothing is gained (see above).

Re:Malware

[manu0601]

Only when the attacker is sitting on the path from the browser to the server. Not when listening in on the side-lines.

But being on the path is shockingly easy with WiFi. Any infected machine can inject exploit into your HTTP connections. I even witnessed it on a LAN.

Re:Malware

[jmcvetta]

Snowden documents taught us that the NSA and CGHQ do it over internet backbones. [...] Pushing towards HTTP/SSL address that

Consider: cryptome.org has long refused on principle to support HTTPS. Their reasoning seems to be that it is better for users to know they have zero privacy, than to believe they do have some privacy. Just something to think about.

Re:Malware

[manu0601]

Cryptome is pessimist. Optimists and pessimists share the same principle: they think they cannot influence what will go on.

Including Slashdot?

[Midnight_Falcon]

I find it more than ironic that this article was posted on Slashdot, which in 2014..still doesn't support SSL. It'll even redirect HTTPS to plaintext HTTP!

Re:Including Slashdot?

its a free forum, why the fuck would they waste processor resources to encrypt the content? Their is nothing to secure, so why would you add an unnecessary layer of security. use security where it is needed.

Re:Including Slashdot?

[passwd]

As you say, this is a discussion site. Anonymity is useful if you want to get honest opinions and honest debate.

Half the comments, including yours, are AC because either people don't have accounts or, more often, they don't want the comment attributed to them. So if half the comments are from people trying to hide their identity, then I think it's reasonable to expect HTTPS.

Re:Including Slashdot?

Yeah, don't distract the old dodderers at slashdot from their decades-behind-the-curve-semi-quest to support a larger character set than ASCII. It's just killin' em as it is. Soooo complex. UTF must stand for Unpossible Terrifying Fuckery, near as I can tell.

Re:Including Slashdot?

[thegarbz]

This!

I've seen the GP's comments a few times today. Why would you encrypt Slashdot. But really is it up to you to decide what needs to be encrypted for your users? People are being persecuted for opinions and leaks, for anonymous postings, for visiting certain websites; people are having their movements logged for something as simple as which fertilizer they research, or god forbid you access a website which doesn't align politically with someone who has power over you.

It's not up to you to decide what your users are afraid of.

Re:Including Slashdot?

For lots of reasons, like how do we even know that this is slashdot? And not some redirected malware site? Or some site hosted by the NSA to track us? Or maybe just some disinformation site that is sending propaganda to locations overseas?

Re:Including Slashdot?

[Coniptor]

It isn't documented any where and I can't recall where I first learned of it because it was years ago but you can get TLS on Slashdot.
Subscribe.
Once subscribed and logged in it should transition you to TLS, at least it does for me.
If it does not you can force the matter with Noscript.

Off hand has anyone noticed Noscript unblocking Google analytics and other domains and certain other analytics domains with each new update?

I also use the Calomel TLS grading extension for Firefox.
Slashdot has been graded Red for years. Dice just upgraded the cert a couple of days ago and it is now graded Blue with PFS. Not Green but at least it's not Red anymore.

OK

[koan]

While I think you should use HTTPS, it's also quite easy to strip away, anyone in the "man in the middle" position can do this, so no problem for the NSA, no problem for an ISP, no problem for a decent hacker (WiFi anyways), however it is "better than nothing".

Which seems to be what we have to settle for these days BTN "better than nothing".

Re:OK

[heypete]

While I think you should use HTTPS, it's also quite easy to strip away, anyone in the "man in the middle" position can do this, so no problem for the NSA, no problem for an ISP, no problem for a decent hacker (WiFi anyways), however it is "better than nothing".

Which seems to be what we have to settle for these days BTN "better than nothing".

It's difficult to strip HTTPS from sites that use HSTS. Considering that enabling HSTS is literally a one-line addition to a server's config file and prevents SSL stripping attacks, it'd be silly not to use it.

Assuming the client can access the authentic HTTPS-secured, HSTS-enabled site at least once, their browser will cache the "HTTPS is required" bit for as long as the site requests. Most deployment guides suggest HSTS cache times of 6-12 months, which would make an attackers job much more difficult.

Adding browser support for DANE would be even better: HSTS allows a server to instruct a browser to only use HTTPS on that site, while DANE allows the server to specify (via a valid DNSSEC-signed record) which HTTPS certificate/CA (including self-signed certs) is valid for that site. Using both methods provides a high degree of assurance that one is securely visiting the authentic site and that no tampering is taking place.

Re:OK

[koan]

Trivial to defeat HSTS:
https://github.com/sensepost/m...

Again you're stuck with BTN.

Re:OK

[WaffleMonster]

Trivial to defeat HSTS:
https://github.com/sensepost/m...

Oh give me a break this does not defeat HSTS it just links to the wrong hostname offered up by an insecure site. Garbage-In-Garbage-Out.

Saying this defeats HSTS is like saying getting domain micr0s0ft.com registered and an SSL cert assigned defeats SSL because I tricked someone into going there and thinking it was the real deal.

Re:OK

[koan]

Then feel safe =)

Self-signed certificate

[manu0601]

Firefox added a warning against all self signed certs

It makes sense: encryption without authentication is useless, as the browser gets a secure channel to talk with an unidentified peer. It can be your server, it can also be a man in the middle, there is no way to tell.

You can get a properly signed SSL certificate for free from STARTSSL, therefore there is no excuse for your broken setup.

Re:Self-signed certificate

[MeNeXT]

Firefox blocked self signed certs. It used to warn and allow an exception but no longer.

I don't need to spend time or money to tell me who I am. What is the problem of me signing my own certificate?

Re:Self-signed certificate

[jones_supa]

Because then a man-in-the-middle can inject a new certificate, which claims to be yours. There's no way to tell whether that certificate is actually from you or not, unless it is verified down to the root level.

Re:Self-signed certificate

[FireFury03]

Firefox blocked self signed certs. It used to warn and allow an exception but no longer.

I don't need to spend time or money to tell me who I am. What is the problem of me signing my own certificate?

Not true. Firefox blocked _short_ self signed certs (and yes, it's a stupid move - stick up a big warning by all means, but blocking them completely is insane. Lots of people now can't use FireFox to access legitimate networking hardware that uses short self signed certs). However, make a sensibly long self signed cert and it works fine as it always did.

Re:Self-signed certificate

For a single domain and one subdomain. Woo. I can have mail.foo.com and foo.com! Now what about my other subdomain? Oh? I need to pay? $60/year? Yikes, my DNS and hosting aren't $60/year together. Crap. Heartbleed may have leaked my cert, better revoke it. Oh? That costs how much?

Fuck StartSSL

Watering down the "No SSL is bad" message

If 90%+ sites used SSL this would be a great idea.

If only 33% sites use SSL, then this warning will be popping up on the majority of websites that people visit.

Guess what happens when an ordinary user sees a warning pop up repeatedly? That's right, they start ignoring the warnings.

Re:Watering down the "No SSL is bad" message

If 90%+ sites used SSL this would be a great idea.

If only 33% sites use SSL, then this warning will be popping up on the majority of websites that people visit.

Guess what happens when an ordinary user sees a warning pop up repeatedly? That's right, they start ignoring the warnings.

Charliemopps said rules that "inform" are good as long as they're not "controlling". He missed the point because he doesn't use Google enough. A warning/information is a broken padlock icon tucked away even if there's a problem with the site. Google does not just WARN. It is giving me AN ERROR with no way to automate my getting rid of the "this site is dangerous" foolishness on our intranet. We know what we're doing. Google got through the door by our bidding as technical users. It's not going to fare well if it CONTINUES treating us like we're children. Or maybe it's done enough research to determine they've already hit critical mass with non-technical base? It's already started to say it doesn't like my sideloaded extension, for instance. One day it will just block it. If google chrome is the next iOS walled garden of browsers, I say Abandon Ship.

The worst part is these current SSL warnings come with 3 or more clicks to get past, and NO permanent setting for your enterprise environment. Also needed by one of our major applications at work. Google is already giving me pains over our internal network, as a USER. "Site is not secure" --let me in "are you sure?" "click here to proceed at your own risk" --RAGE-click. I have to do this a few times a day on sites that are already in my history.
The browser should know better than think they became insecure overnight. I have a router with DDWRT and there is no way I'm going to be upgrading if my own home router's SSL3 certs are going to put me through this whole pain.

Remember non-secure iframes mixed with HTTPS? There's no warning, but there's still about 3 clicks for a one-time-only relief. Firefox has its pains, and I'm starting to try random stuff like Comodo and Palemoon forks.

Slashdot is *NOT* secured !

... The proposal to mark HTTP connections as non-secure ...

How many of you have tried " https://www.slashdot.org/ " ?

How many of you succeed ?

Re:Slashdot is *NOT* secured !

i thought subs got https capability along with adfree?

Boy who cried "wolf"

[antifoidulus]

Have they ever read "The boy who cried wolf"? You warn people that their local community bulletin board website isn't encrypted enough times and they will probably start to ignore all your warnings. All this would probably do is annoy people to the extent that they will automatically click away any warning window, including when certs are invalid, possibly forged etc. In other words, it will really annoy people and could even be detrimental to security. Maybe if they restricted it to POSTs not GETs, though that may just incentivize lazy developers to use GETs instead of POSTs.....

How arrogant

[markdavis]

>"If implemented, the developers wrote, the change would mean that a warning would pop-up when people visited a site that used only HTTP to notify them that such a connection "provides no data security"."

Arrogant, annoying, unnecessary, stupid, and inaccurate. There are a LOT of sites that have absolutely no need for https and labeling them "insecure" will annoy clue-full users and confuse clueless users all in one swoop. And by encrypting everything, it makes caching far less useful and slows down browsing some.

This type of attitude in design is one of many reasons I don't and will not use Chrome. It is bad enough some of the recent stuff being shoved into Firefox :(

AWS S3

Sucks if you're running a static host on S3 since it's close to impossible to get an ssl cert hooked up to that.

Bad for small business owners

[wvmarle]

I'm operating a small web site, mostly to promote my business. It's there, it works, I don't do much about it.

I've considered https, but it's too hard for me as a small web site owner: first I have to manage to get an SSL certificate (costs serious effort and money), then I have to figure out how to install it correctly (tried it before with a self-issued certificate and failed; while I'm fairly computer savvy), finally I have to somehow remember to renew it every few years or so - which is an interval way long enough to completely forget how the installation worked, so I have to start all over again.

Now it seems Google gives higher ranking to https sites - meaning my site gets a lower ranking, that's bad. Next Google is starting to warn people to stay away from my site as it's not secure: why should I want to encrypt what is otherwise public information, like event schedules and itineraries? I put that information on my web site with the express purpose of reaching as many people as possible.

There are many people like me, who put up a web site just for promoting their business. It doesn't make sense to encrypt this info, at all. It doesn't make sense to downgrade ranking for that reason. Very bad move by Google.

Re:Bad for small business owners

Now it seems Google gives higher ranking to https sites - meaning my site gets a lower ranking, that's bad. Next Google is starting to warn people to stay away from my site as it's not secure: why should I want to encrypt what is otherwise public information, like event schedules and itineraries? I put that information on my web site with the express purpose of reaching as many people as possible.

Only encryption plus authentication hides information. This is not what encryption is for here. Encryption here protects your readers from:

(1) MITM attacks which may change your readers http requests (*cough* Verizon *cough*) or response pages (e.g. to inject ads).
(2) Spying from various ISPs and intelligence agencies. I know I am giving some information away when I use the web but that doesn't mean I want to make it easy for everyone to track exactly what I am doing.

Re:Bad for small business owners

[thegarbz]

There are many people like me, who put up a web site just for promoting their business. It doesn't make sense to encrypt this info, at all. It doesn't make sense to downgrade ranking for that reason. Very bad move by Google.

Doesn't it make sense? What makes you so sure? Do you run a gardening shop? How do you know your customers aren't being watched for fertilizer references? Maybe you sell some memorabilia or trinkets with a war or political relevance? God forbid you actually sell stuff that can be used to make firearms.

Your problems are problems, there are no doubts about that. However your problems are related to the current implementation of the technology. Personally I found it quite easy to setup SSL on my website. I found it hard to generate a certificate, and I am dismayed at the cost of a real certificate that supports wildcards and the fact that my self signed certificate creates an error for me when I log-in to see the latest and greatest information about nigerian princes and viagra. But these problems are everything to do with implementation of the technology and not to do with what Google is doing.

Anything that drives greater privacy for people who in the current climate should expect their governments to be watching their very moves is a good idea.
The cost of implementation needs to be addressed too, but lets get an interest in first.

Re:Bad for small business owners

[wvmarle]

Those spy agencies can always see which server one connects to. No encryption can hide the actual connection, the IP address you talk to. That "metadata" tells spies what you're looking for.

If implementation were easier, much easier, and without having to go through the trouble of remembering renewals or break your site, I'd probably have implemented it already, as it won't hurt.

Re:Bad for small business owners

[WaffleMonster]

Doesn't it make sense? What makes you so sure? Do you run a gardening shop? How do you know your customers aren't being watched for fertilizer references? Maybe you sell some memorabilia or trinkets with a war or political relevance? God forbid you actually sell stuff that can be used to make firearms.

Your fertilizer page is 14674 bytes in length. What differences does it make if you encrypt it? I still know you went there and I know who you are by your address. Fail.

Re:Bad for small business owners

>Next Google is starting to warn people to stay away from my site as it's not secure: why should I want to encrypt what is otherwise public information, like event schedules and itineraries?

You don't. For you there is no privacy issue because you want to broadcast your message. BUT your visitors do have privacy issues. Do they want a potential burglar to know when they will be at a specific time? What about an employer spying their employees? What about a governmental agency?

The problem with security/privacy is you don't know how clever is your opponent and how far they are ready to go. Recent events prove at least states are ready to do anything to violate your rights.

Re:Bad for small business owners

[jones_supa]

Well, that once again boils down to the fact that HTTPS isn't perfect. It scrambles the content but does not hide the length of the message and it cannot hide the IP address of the client. But still, HTTPS provides more security over HTTP.

Re:Bad for small business owners

[Anne+Thwacks]

If SSL was an inconvenience to the TLA's, this would not be happening.

The boy-who-cried-wolf is the problem here. That story is at least 10,000 years old, and Google still have not got the message.

Perhaps Cartoon Network is not encrypted, so they have not watched it?

Re:Bad for small business owners

>Your fertilizer page is 14674 bytes in length. What differences does it make if you encrypt it? I still know you went there and I know who you are by your address. Fail.

You forgot that:

- the connection is permanent, multiple request pipe lined trough same connection
- The page are by today standard variable sized, headers are vaiable sized
- Compression is often used
- AES and most symmetric cipher are block ciphe rand rounded

Side channel is a defect of TLS but not so easy. Anyway, it's far harder to break than without.

Re:Bad for small business owners

[thegarbz]

You're assuming https used to serve up static data.

Much of the web is no longer static data. Kind of like Slashdot. Next time I visit here I will get something different. You as WaffleMonster will likely see something different to me as thegarbz right now because of how the system is setup.

My fertilizer page may be 14673 bytes long. But does your fancy ability to type in the same URL tell you if I had 1 bag or 100 bags in my shopping cart when I checked out?

It may seem insignificant, it may be perfectly innocent, but none the less enough to get you put on a three-letter-agency watch list.

Re:Bad for small business owners

[thegarbz]

The IP tells you very little these days. Even right now we are talking to a server with the same IP address. None the less every time we visit the page we will see something different and say something different. Even if the hosted content is the same what you see and what I see are likely still different due to personalized settings.

Much of the internet is like that. URLs are not named www.thediffinitiveguidetobombmaking.com/howtokillthepresident.html It's more likely to be somethingillegible.blogspot.com/randomnumbers/morenumbers/gibberish=?morerandomcrap. Even then using TLS the only thing that is visible is the initial connection to blogspot.

As for renewals, I don't remember any renewals. People remind me. My DNS host sends me an email when it's about to expire, my domain provider does the same, and I'm willing to bet you a Marsbar that an SSL cert provider who likes getting paid will also send you reminders. I do the self-signed thing which is also dead easy to remember since I last signed it on the 1st of July and thus lines up nicely with end of financial year reporting. Being able to remember to do something is a poor excuse. Being too difficult or too expensive however is quite legitimate.

Re:Bad for small business owners

>Those spy agencies can always see which server one connects to. No encryption can hide the actual connection, the IP address you talk to. That "metadata" tells spies what you're looking for.

I'd be happy to forcibly limit their warrantless spying to just "metadata". Let them see I connected to Wikipedia, but not what pages I read. Let them see I went to Amazon, but not what I browsed and not what I eventually bought. Let them see I Googled, but not what my search history is. If they want to find any of that out, they have to get a warrant, they can't just have all of it for free, for everyone regardless of suspicion, and datamine the hell out of it.

Spies out in public can see you walk into the library, church, grocery store, doctor's surgery. Should they be free to waltz into your doctor's appointment and listen to your conversation there? No? Then encrypt your damn websites. Even a self-signed cert is better than nothing -- it'll provide privacy even if it doesn't prove authenticity.

Re:Bad for small business owners

[AmiMoJo]

One of the easiest ways to get HTTPS is to use CloudFlare: http://blog.cloudflare.com/int...

I'm not associated with them, but I have used their free service and it works just fine. As well as HTTPS you get free caching on a CDN for faster load times, especially for overseas customers.

I imagine that now Google is pushing it we will see more free offerings. The EFF is going to offer a free, easy set-up option next year too. By the time it comes around you won't have any problem implementing HTTPS, or have to pay anything.

Re:Bad for small business owners

[wvmarle]

It'd be great if Google themselves come with a free solution.

Re:Bad for small business owners

I've considered https, but it's too hard for me as a small web site owner: first I have to manage to get an SSL certificate (costs serious effort and money),

Buddy, you can get a certificate for less than FIVE US dollars per year. Is that too much for you? https://www.ssls.com/lp/4.99-ssl-offer.html

then I have to figure out how to install it correctly (tried it before with a self-issued certificate and failed; while I'm fairly computer savvy),

I think you should rethink your definition of computer savvy. And the certificate authorities have instructions for most web servers.

finally I have to somehow remember to renew it every few years or so

The certificate authority you bought it from will send you an email reminder, because they will want to sell you a new certificate.

- which is an interval way long enough to completely forget how the installation worked, so I have to start all over again.

So write down the procedure, and put it in your gmail account.

Re:Bad for small business owners

So Google thinks my hobby-related website (which is completely ad-free, cookie-free, and Javascript-free) needs HTTPS? They can go F... themselves.

Re:Bad for small business owners

[pathological+liar]

first I have to manage to get an SSL certificate (costs serious effort and money)

No, it costs ~$7/yr and takes a few minutes. Maybe 15 if you need to look up how to generate the signing request.

Re:Bad for small business owners

[WaffleMonster]

You forgot that:

- the connection is permanent, multiple request pipe lined trough same connection
- The page are by today standard variable sized, headers are vaiable sized
- Compression is often used
- AES and most symmetric cipher are block ciphe rand rounded

People pointing out all of the ways my response COULD be wrong or if x, y, z countermeasures taken then my scheme is foiled....and and if you used TOR or something then even your IP would be safe... My central goal here is to communicate Joe Biden's point when asked about telephone metadata collection not to nit pick and dot my j's and cross my 0's.

Lets examine some of the responses..

Well just add padding so they won't know... well ok...who is doing that?

Multiple requests encapsulated in an HTTP 1.1 pipeline or futuristic 2.0 scheme... so what? You visit a page and the chatter stops while your reading it and starts up again when you click something else and follow a different link.

There could be dynamic content and that could render it difficult to discern x, y and z... This could be true or not depending on the site.

Compression - I don't get how this is relevant... When NSA/KGB goes to your site to collect baselines wouldn't the data be compressed or not the same as any other visitor?

- AES and most symmetric cipher are block ciphe rand rounded

With AES your looking at a block size of between 16 and 32 bytes.

Insecure shopping cart comments.. If you have a shopping cart on your website it stands to reason you already have an SSL certificate so the question posed regarding value of HTTPS over HTTP is not applicable - otherwise I agree what you enter on a form is probably very safe from prying eyes when using HTTPS vs HTTP.

Random padding for BREACH mitigation... I'll believe there is someone on earth who cared enough to implement this vs simply disabling compression for *dynamic* assets when I see it for myself. Compression overhead for dynamic content was always of questionable ROI as it is.

Re:Bad for small business owners

[DavidRawling]

Buddy, you can get a certificate for less than FIVE US dollars per year. Is that too much for you?

Actually yes, frankly it is. Because according to Google's overpaid, brain-dead Chrome developers, I need one for the KVM, one for each of the management cards in the servers, one for each of the appliances I have (from DVRs to firewalls etc), one for each little device with a web server (assuming it even supports writing a certificate to storage, and config for HTTPS), one for each workstation or server with an app or config UI. Quick count for my house alone ... 47 certs excluding the devices that quite literally have NO way to store and use a cert. I simplified too by assuming the devices supporting certs can handle SHA256 (thanks Google for THAT little recent shitfight). And the certs don't support SANs nor do CAs allow local names, so I have to use the correct FQDN all the time now (no more http://dvr/ or typing the IP - now it's https://dvr.private.example.co...). And what have I gained? I've had to spend $230+ and several hours of work to avoid irrelevant anti-sec warnings, on devices no-one can get to except me. It's bulldust.

Re:Bad for small business owners

So you have managed to configure your own DNS, configure a web server, set up a web site, but can't configure HTTPS support?

If you are really clueless about technology then chances are high that you are using webhosting that takes care of all above mentioned details. So why not use one with HTTPS support included?

How much is your small business worth? If its revenue is $1000/year then why you should care about your Google rankings? If it's $50,000/year, then certainly you can afford to pay $8/year for a certificate, and spend few hours to learn how to configure it (or buy a couple of beers to a friend to do that for you).

Really, the excuses against HTTPS are getting really ridiculous here, it seems that half of the posters are just NSA trolls that aim to undermine the security.

Re:Bad for small business owners

[Slashdot+Parent]

I've considered https, but it's too hard for me as a small web site owner: first I have to manage to get an SSL certificate (costs serious effort and money), then I have to figure out how to install it correctly (tried it before with a self-issued certificate and failed; while I'm fairly computer savvy), finally I have to somehow remember to renew it every few years or so - which is an interval way long enough to completely forget how the installation worked, so I have to start all over again.

Ideally, your web host should hold your hand through this.

I don't want to come across as a shill, so I'm not going to name names, but I just looked at the customer panel for a large shared hosting provider, and the process for adding HTTPS was dead simple. You just click on "Secure Hosting", and it walks you through it. You can use a self-signed cert (which they create for you automatically), buy an SSL cert through them for $15/yr, or you can copy/paste in your own (if you want to save a few bucks and get a PositiveSSL from Namecheap for $9/yr or a "free" cert from StartSSL). It took me about 2 pointy-clickys to add SSL to a test domain.

Blockages, Warning Signs, Slow Traffic

[Irate+Engineer]

So much for the 'information superhighway'.

I have to have an adblocker running just to keep my browser from turning into a scene of Times Square on a bad acid trip, even on reputable sites which brings the page load to a crawl. Most browsers have some warning for this or that, little green or red padlocks, etc.. Everything might be unsafe, click at your own risk!

If I were a pilot and there were the same number of warnings and blinking lights flashing in the cockpit I probably would have bailed out long ago.

On one extreme you could lock your browser down so hard that there would be little point to attempting to connect to the internet, you'd never get anywhere. On the other you could strip away all of the protections and get pwned in a heartbeat (or maybe not).

I'm not an IT professional by any means, but the current state of the internet is a discordant mess of virtual business fronts and libraries all facing a street prowled by every type of criminal and depraved individual imaginable (and a few that you can't imagine). Have a nice walk down Main St., if you dare!

If we could at least have a secure Main Street, and leave everyone free to go to the seedier side of town if they wish, wouldn't that be great? I'm not sure whether this is technologically achievable. I have to say things are not working well and I sometimes think that the Internet has jumped the shark and it can't last in this state. It's becoming less safe and usable by the day.

Re:Blockages, Warning Signs, Slow Traffic

[drinkypoo]

So much for the 'information superhighway'.

Wow, you just invalidated your entire comment. Thanks!

Oh brother

Oh brother. Big brother, that is. As if everything you do with Google (and pretty much anything else) wasn't being carbon copied directly over to some NSA server *after* decryption on the other side. What a joke.

Sly

It's not nuts. It's sly. What they're trying to do here is force increased purchasing of SSL certificates from third parties. It's about profit and the wealthy and powerful scratching each other's backs. Sure, you can put in your own, but the the browsers will all put up scare dialogs about how they don't know who issued the cert, and away go your visitors / customers.

Do you NEED to have SSL for your blog? For your comic strip? For your aquarium how-to pages? For your archive of 50's pinups? For your CGI that calculates pixels-per-planet for specific lens magnifications and sensor densities? Doubtful. Well, they're looking to change that. It'll be SSL or no visitors, and the web gets hooked even further into the pockets of commercial interests, while the cost of entry slowly inches away from the poor.

Coincidence? Hardly.

Google's pissing directly on your heads here and trying to tell you it's rain.

Re:Sly

[arth1]

That you can get free certs doesn't mean it's easy or in some cases even possible to install them. These days, you find web servers in lots of embedded devices. Should i have to click by a warning every time I want to access my DVR on my LAN?

Encryption is useful when it serves a purpose. It doesn't always, and then it's just a waste at best and a false sense of security at worst.
SSL is inherently a weak solution - it is never any stronger than the least strong of the enormous list of CAs built into every browser. If just one of them is compromised (or have handed over the keys to a three letter agency), visitors lose the protection against MITM attacks and similar.

Self-signed certs are actually far safer, if done right, where the user has to actually validate the cert the first time. But those gets warned against.

Re:Sly

[TheRaven64]

Given hoe poorly most people secure their WiFi, having a warning if you're using a DVR on a LAN and it doesn't support end-to-end encryption sounds like a good plan to me. Of course, this raises an interesting question about built-in obsolescence, given that certificates have a valid-until date.

Re:Sly

[mwvdlee]

You know none of those have CA certs pre-installed on any browser, right?

Re:Sly

[loufoque]

Give me one free certification provider that doesn't require installing anything on the user's side.

Re:Sly

[Tito1337]

StartSSL.com gives free Class1 and is preinstalled in every modern browser

Re:Sly

[loufoque]

StartSSL.com is always over capacity, it's not possible to get anything.

Re:Sly

[dave420]

So make your own CA, create certificates using that, and trust the CA on the devices on your network. Problem solved: No warnings.

Re:Sly

[petermgreen]

hmm, I can't say i've ever had any problems getting certs from them, despite usually having let the client cert expire and having to start from scratch when renewal time comes.

I've heard of people being denied certs because their site was "commercial" and they have the annoying habbit of issuing the cert to you some time before putting it on their ocsp server but I never heard anything about over-capacity before.

Re:Sly

[Rich0]

You know you can get free SSL certificates, right?

Do they include free revocation certificates? Hint: check. I wonder how many of those free certificates were potentially compromised by heartbleed because the owners don't want to pay to get new "free" certificates.

Re:Sly

[FireFury03]

StartSSL.com gives free Class1 and is preinstalled in every modern browser

And whilst I use StartSSL, it's a pain that you can't get free wildcard certs for your domain...

Re:Sly

[petermgreen]

I wonder how many of those free certificates were potentially compromised by heartbleed because the owners don't want to pay to get new "free" certificates.

Indeed, and it's even worse than you suggested. Normally what you would want to do after a vulnerability like heartbleed that put your private key at risk* is

1: obtain a new certificate
2: install the new certificate
3: revoke the old certificate

Unfortunately as a startssl free user you can't easilly do that. Not only do revocations cost money, they also have stupid policies about duplicate certificates which mean you have to either buy the new cert from a different CA, upgrade to the paid/verified startssl tier** or incur substantial downtime by revoking the old certificate first.

I bet a lot of people just said screw it and waited until the certificate expired before rekeying (and possiblly by the time the cert did expire had forgotten about the issue and didn't rekey then either).

*AIUI heartbleed wasn't a particually easy vulnerability to actually expolit to get the key, it's not like say the Debian openssl vulnerability where the keys were unquestionablly compromised.
**a class 2 (paid/verified) cert and a class 1 (free) cert in the same name apparrently don't count as duplicates because they are issued from different intermediates and even if they did paid certs unlike free ones allow secondary names which works arround the issue.

Re:Sly

[tom17]

You know they actually do, right?
(On any browser I have tried in the last few years)

Re:Sly

[JackieBrown]

Did you miss that a warning will be displayed that the site "provides no data security". It's not blocking access to your blog or comic strip.

Re:Sly

[arth1]

And pray tell how, exactly, I install a certificate on a DVR on my home LAN (or switch it to using https for that matter)?
These are embedded devices.

Re:Sly

[fremean]

*grin*

Terminate the ssl session on an nginx reverse proxy to the DVR.

But that's just because I'd never directly use such a thing - I have a tendency to take anything that has 'internet connectivity', firewall it from the internet, and expose just the parts I want - and usually only on a command line.

Re:Sly

[fremean]

Note that StartSSL consider a Paypal donate button on a website on a parent domain to be enough to make your website "commercial" even if the subdomain is quite evidently not related and you tell them you're using it for application level security (seriously, owncloud.mydomain.com was rejected because mydomain.com had a tiny donate button in the corner)

Re:Sly

[mysidia]

These are embedded devices.

You install the patch or firmware update from your appliance vendor to address the insecure transport security vulnerability (Failure to utilize secure protocols such as SSH or HTTPS over Telnet/HTTP for administrative connections; transmission of usernames and passwords in cleartext withotu encryption).

Re:Sly

[arth1]

Sorry, no, won't work. See, in order to get a valid SSL cert installed, it has to match the FQDN, or you still get warnings. Which means the embedded device suddenly needs writable storage and routines for uploading said cert, which is a much bigger security risk than someone setting up a man-in-the-middle attack inside your home between you and your DVR.

There are thousands of different web-enabed devices on networks, accessible through unencrypted methods. Because most of them they don't need it. I don't need a certificate on my printer any more than I need auto-locking doors everywhere in my house.
It's only adding overhead, and not giving any tangible benefits.

SSL isn't a silver bullet. It's mostly theater, giving the unwashed masses a feeling of security. It's not implemented in a secure way, but relies on distributed trust - a system that doesn't work.
You have to be horribly ignorant to trust that none of the CAs in your browser's or OS' key store have been compromised, or handed out to someone. Do you verify that the certificate for "secure" sites you visit actually are from the signing authority the web site is expected to use? No? Then how can you possibly trust it?

It's worse than nothing in that it makes you feel warm and cozy and safe, and lulls you into a false sense of security, much like AV software does.

Security is a state of mind. Not a technical piece of shit you can force on everything and say "look, it's secure now!"

Re:Sly

[mwvdlee]

Like which?

Apart from 30-90 day trial accounts from the big CA's, I know only of StartSSL (no pre-installed CA cert) and several community-CA projects (no pre-installed CA cert).

Re:Sly

[mysidia]

Which means the embedded device suddenly needs writable storage and routines for uploading said cert

Which is already needed to record configuration details such as hostname and IP address.

I don't need a certificate on my printer any more than I need auto-locking doors everywhere in my house.

Not using SSL for remote administration b/c you think SSL is weak is more like having an open doorway with no door installed, because you are concerned that intruders can just kick in the door.

Learn a little bit, you should notice most people do have locking doors outside their house, and they even have many privacy doors inside their house, many people have a deadbolt on their bedroom door as well, and these are useful home security mitigations when it comes to discouraging potential intruders and helping to protect homeowners.

You have to be horribly ignorant to trust that none of the CAs in your browser's or OS' key store have been compromised, or handed out to someone.

The primary purpose of SSL is to contend with passive sniffers. This is a much higher bar for the attacker. There are many potential attackers to whom gaining access to a compromised CA key or compromising DNSSEC is not even a possible option.

Re:Sly

[tom17]

StartSSL *does* have a pre-installed CA cert on any browser I have tried. I'll be curious to know which browsers do not have it.

Re:Sly

[Slashdot+Parent]

And whilst I use StartSSL, it's a pain that you can't get free wildcard certs for your domain...

And it fucking pisses me off that the grocery store won't just give me free food, too.

StartSSL is a business, and its business model is to give out free Class 1 certs with the hope of converting you into a paying customer. They charge for every possible thing other than issuing personal use basic certs, even cert revocations. So if you say wanted to revoke your "free" cert for a very good reason like, say, Heartbleed, then be prepared to be converted to a paying customer.

I'm not saying that you should never use StartSSL, though. I'm just saying that you should know what you're getting yourself into, and know why they don't offer (and never will offer) other free services like wildcard certs.

Re:Sly

[FireFury03]

And whilst I use StartSSL, it's a pain that you can't get free wildcard certs for your domain...

And it fucking pisses me off that the grocery store won't just give me free food, too.

StartSSL is a business, and its business model is to give out free Class 1 certs with the hope of converting you into a paying customer.

*sigh*

The conversation was about it being so very cheap to roll out SSL because its trivial to get free SSL certificates. I'm not criticising StartSSL, I'm simply stating that it *isn't* trivial to get wildcard certificates. So the whole "you should use SSL everywhere coz it's free" premise kinda falls down there, since it isn't in fact free.

Re:Sly

[Slashdot+Parent]

The conversation was about it being so very cheap to roll out SSL because its trivial to get free SSL certificates.

Ahh, sorry. I missed that part of the conversation.

Maybe the "Let's Encrypt" initiative will help. Cloudflare is also a good option.

Cheers!

Re: Sly

What he says.

Re:Sly

[mwvdlee]

Well, it didn't work on Chrome, Firefox, IE10, Opera, Safari and Dolphin on Android 2.3 when I tried it about a year ago.
Had never had any trouble with commercial certificates, and if I'm going to have to rely on non-pre-installed CA certificates, I might as well create my own chain like I do with WAMP setups.

Re:Sly

[tom17]

Weird, what versions of those browsers? I have IE9 here and it's pre-installed.

I have been using it, hassle free (with the CA cert pre-installed on Chrome,FF & IE) since 2011 now...

Something must have been afoot with your testing - I'm not blaming you - I just can't see how it wouldn't have worked a year ago based on my experience with default browsers...

Re:Sly

[Rich0]

StartSSL.com gives free Class1 and is preinstalled in every modern browser

Great. And what does somebody do if they have a pre-heartbleed certificate from startssl? Last time I checked they charged to revoke a certificate, and as I understand it they won't let you issue a new certificate for a domain you already have one for. Thus, I imagine that MANY startssl sites are using potentially-compromised private keys.

Ok, REALLY stupid

That's less than a beer at the local bar.

No, it's more like two beers. And I rather have the fucking beer. You idiots who go "it's only $X" don't seem to EVER understand that eventually, all those "it's only $X charges run un right the FUCK out of available cash. You DO know my power company wants those dollars, right? And the gas company? And the filling station? And the grocery store? You're so fucking glib about the $9, why don't you set up a web site to send $9 to everyone once a year? IT'S ONLY $9, RIGHT? You won't notice. You clearly have nothing better to do with your money.

Re:Ok, REALLY stupid

[bombman]

Yes, and you just wasted $9 of your own power bitching on /. I wonder how often you do that.
Not to mention $8986 of everyone's time and internet traffic. You can get it for FREE.. read FREE!
You can also pay, but you can get it for FREE - get it FREE?

Validating a self-signed cert

[davidwr]

It makes sense: encryption without authentication is useless, as the browser gets a secure channel to talk with an unidentified peer. It can be your server, it can also be a man in the middle, there is no way to tell.

You mean other than manually comparing the certificate against a known-good copy you previously obtained through a trusted channel then telling your web browser to memorize it as a known-good certificate?

Re:Validating a self-signed cert

[TheRaven64]

That's the best way of securing a connection, but it doesn't scale. You need some out-of-band mechanism for distributing the certificate hash. It's trivial for your own site if you're the only user (but even then, the right thing for the browser to do is warn the first time it sees the cert), but it's much harder if you have even a dozen or so clients.

Sly

[tom17]

You know you can get free SSL certificates, right?

Has This Thread Been Hijacked By The NSA And ISPs?

Encouraging the web to go 100% SSL only is a unquestionably a good thing.

The issues with performance were gone a decade ago...and certs can be obtained cheaply or an no cost. It makes no sense that all the "anti-SSL"
posts have been modded up.

Google gone batshit insane

[WaffleMonster]

How much did the CA cartel pay Google to come up with this load of BS? Talk to me about SSL everywhere when everyone is using DANE and CAs have long since gone out of business.

You don't scare people with warnings like this. Crying wolf only places your users at increased and unnecessary risk.

Annoying to Self Hosters

[tom17]

Just use a free TLS cert from StartSSL

Re:Has This Thread Been Hijacked By The NSA And IS

[WaffleMonster]

Encouraging the web to go 100% SSL only is a unquestionably a good thing.

Not if it means paying rent to CAs every year so they can sit on their fat ass and do nothing.

The issues with performance were gone a decade ago...

Even if maintaining session state and TLS were completely free round trip delay and assuming the best case that session resumption occurs for all accesses you still have to eat additional round trips...delay that is quite noticeable to those accessing content internationally and over wireless or low bandwidth links.

It makes no sense that all the "anti-SSL"
posts have been modded up.

Why should people have to screw with SSL when they have no secure content to offer? This is what makes no sense to me. Google is twisting arms to have their way.

Regardless of what you think of making everything "secure" I don't subscribe to the notion that ends should justify means.

So they will warn about slashdot not having ssl!!!

About time you guys implement it on your home page I think...

fucking pussies

Some of us have been wanting https everywhere for more than 10 years. its about fucking time.

And I'm also guessing that the fucking whiners about CPU costs and cert costs are also Libratards who are always looking for a free lunch or looking to get someone else to pay. First to whine about taxes also first in line for a handout.

The world is pay to play.

Shooting themselves in the foot

[Chrisq]

Google may be shooting themselves in the foot when it comes to things like Google Analytics. Finding out what pages people come from is very useful

nice article

only problem is it assumes SSL/TLS is actually secure...

Please wait

[olau]

Please at least wait until distributing certificates through DNS takes off (DANE).

CA-based TLS is not going to work for everyone. Of course, people in the corporate world couldn't care less - but many of the best parts of the web don't come from the corporate world.

Cost?

I'm not sure what is the advantage of forcing https on sites that do not need it. Sounds like another chapter of security paranoia soap opera.

A practical DoS attack on the web

[ColMstrd]

The choice about whether or not to encrypt traffic should be left to each website's administrator. Many sites--shock!--use the web to disseminate information they wish to be public, and the site's users have no problem with their access to it being public either. So get out of their faces! Using the browser to deprecate admin's particular choices is contrary to the spirit of the web, which should always do its damndest to serve something, and degrade gracefully when it's in difficulty, not pop annoying dialog boxes in the user's way.

Self-certificates are already a fairly effective denial of service attack when Firefox is used to access many independent sites that try to implement https, but who fail to do so in a way that offers a smooth user experience to J. Random User (I'm thinking particularly of IndyMedia).

Please note: in China, the censorship does not rely on blocking everything; just on blocking enough that all but the very motivated fail to access it. This troublesome minority can presumably be picked off at leisure later.

Keep it simple, stupid!

Does HTTP/SSL force one IP address per www domain?

[Swordfish]

Generally when I try to set up HTTP/SSL in Apache, I get warnings that I can't do virtual hosts for SSL. In fact, I was able to force this through in the past. But I think there's supposed to be some issue with it. I think it's something along the lines that if a connection is encrypted, the server doesn't know what the URL is until it's decrypted, and it can't really decrypt until it knows what the virtual host is. Something like that....

So does it mean that adoptions of HTTP/SSL everywhere will be the end of virtual hosting, and then force each web domain to have a different IP address?

Wow

What a great idea. It seems the next poodle will be able to bite off a chunk of the entire Web, not just its HTTPS part.

Re:Does HTTP/SSL force one IP address per www doma

[DavidRawling]

No - this problem is solved with SNI (Server Name Indication) which is part of all the current browsers, and has been for a while now. The client tells the server which certificate to return (which hostname it's going to ask for) in plaintext. There's probably a module you need for Apache to support this - IIS finally does it natively, so I'm sure it was already there in Apache/nginx.

Silly idea.

[Geeky]

There is no need for SSL everywhere and punishing sites without it by ranking them lower is just plain wrong. Why on earth would a brochure style site for a business need SSL? Why does Wikipedia need SSL (for readers, not for editing)? Why do blogs need SSL for readers? Why does the BBC News website need SSL?

There are a vast number of sites that have no need for SSL and it's simply unnecessary overhead.

Re:503 Kim Jong-un

You were observed attempting to leave comments about Feelless Leader. We is blocking all Sony Swine Dogs!

Makes sense

[Lord+Bitman]

Or at least, makes more sense than throwing up a giant red "WARNING: THIS SITE IS INSECURE!" page for HTTPS self-signed, but *not* for every other HTTP-only site.

Re:Makes sense

[Geeky]

That makes sense to me. The warning is saying "this site claims to be secure but the certificate doesn't check out in some way, be careful", whereas http makes no claims to be secure and hence no warning is given.

Distinct IP address per site required for SSL

[originalhack]

Most non-SSL sites use a single IP address for multiple sites and the actual hostname portion of the URL is not known until the GET request.

Assuming that we want IPv4 to continue to work, a mechanism to permit an SSL certificate to secure a group of sites would be needed before more widespread use of SSL for non-commerce/non-login sites would be practical.

Essentially, if a server hosts 30 domains, the server's certificate would need to have a certificate of its own and that certificate would have to be signed by EACH of the 30 domains. That is tricky and would require revision of HTTPS. You would probably have to have the server initially use its OWN unsigned/self-signed certificate to establish an SSL connection, have the browser specify the hostname, then have the server return a signature record that uses that hostname's certificate to sign the fingerprint of the server's SSL certificate. Once the browser confirms that the appropriate CA signed for the hostname and the hostname signed for the server, then it could continue the request (and cache the server's fingerprint).

Google should get cracking on this new HTTPS handshake first.

Re:Distinct IP address per site required for SSL

[XSpud]

It's worth having a look at server name indication which is supported by modern browsers. This allows multiple secure vhosts and certs per IP address.

Re:Distinct IP address per site required for SSL

You should look up SNI. The *only* reason this doesn't have widespread use at the moment (although groups like Cloudflare are starting to push it into mainstream) is that Microsoft would not add support for it to Windows XP, so for any sort of widespread traction Windows XP usage would have to be dead first or those users simply would not be able to reach those sites. Well, some earlier mobile devices which are still in use today also failed to support it properly.

However, Windows XP is quickly becoming negligible, so expect to see accelerated adoption of SNI and continued use of IPv4. Sorry IPv6 we just don't need you quite yet.

Re:Distinct IP address per site required for SSL

Or, alternatively, Google could use warnings about HTTPS to pressurise people to get off their lazy backsides and adopt IPv6.

Once the websites have obtained IPv6 connectivity and got it working, they just need to pop up a banner at the top (only for Chrome users) that says something like "Getting warnings about an insecure connection? You're still getting the same basic connection we've always provided. To access our site securely, ask your ISP to update your internet connection to the current IPv6 standard." The idea is to reassure the user that nothing has changed, but there is now a more secure option available. Link it to some more information about what IPv6 is and about address exhaustion and why they can't have a secure connection on IPv4 while the big websites can. For users of other browsers that don't provide a warning, make the same point in a more subtle manner, so they aren't alarmed without good reason but also don't feel like the site is hiding it from them.

If you think how many sites will be in that position, the cumulative effect of all the banners could be quite persuasive. It would only take a relatively small but increased proportion of users asking for IPv6 before ISPs sit up and took notice.

Google blames website, website blames ISP, users pressurise ISPs to enter the 21st Century.

Re:It's not stupid

[alexandre]

Encryption has a cost, it isn't free. It increases CPU utilisation and power consumption. It interferes with caching and reduces network efficiency.

This is a dumb idea. A very dumb idea.

https://www.httpvshttps.com/

Security is a two way street

[alexandre]

You do need HTTPS to protect mundane content: Saying otherwise is very short sighted...

You might not care about the content, but the way someone, somewhere, is accessing it, does offer a lot of "value".
It can allow a watchful eye to either accuse the reader of being outside the norm, criminal, not respectful and whatnot (reason why librarians fought hard for the right to lend books without giving the list to the state!) or allow them to caracterise, profile, target a person over time for many different reasons.

Thus everyone should have the to right to read anonymously and willingly.
Witholding this right from others is being complicit with opressors.

Users of your self-signed site

[tepples]

I trust that self-signed cert more than any of your "trusted" CAs you fuckers!

The untrusted certificate warning page offers a button to view and add a certificate. If and only if you have verified the key fingerprint of a particular site's self-signed certificate out of band, it's secure to click that button. Just don't expect the general public to add your own site's self-signed certificate without giving them a secure way to verify that they're not behind a MITM.

Annual manual StartSSL dance

[tepples]

Why must any site be unencrypted?

Because it may not be worth it for every operator of a small web site to pay extra per month to a hosting provider and certificate provider to enable encryption. In the case of StartSSL, this payment is not in money but in the labor to renew every year. And though modern browsers support Server Name Indication (SNI) to allow name-based virtual hosting over HTTPS, HTTPS shuts out those remaining users of Internet Explorer on Windows XP unless you pay your hosting provider extra for a dedicated IPv4 address.

Re:Annual manual StartSSL dance

[OutOnARock]

HTTPS shuts out those remaining users of Internet Explorer on Windows XP

You say this as if it were a bad thing.....

Re:Annual manual StartSSL dance

[tepples]

It's a bad thing if you're trying to sell them a new computer that can run a newer operating system such as Xubuntu 14.04 or perhaps Windows 8.1 with Classic Shell.

Expectations based on URI scheme

[tepples]

It has bugged me for years that unencrypted plain text data is given a pass, but a self-signed certificate with encryption brings up a warning that requires multiple clicks and in some cases even importing a certificate to get through.

I think this double standard relates to the difference in end users' expectations when they see "http" or "https" in the address bar. People have been conditioned to think it's OK to put in a password or a credit card number just because the URI scheme is "https".

Paywalls; HTTPS proxy

[tepples]

I fail to see how going to my local newsite to read about the new antics of our clown politicians needs to be encrypted [...] I will encrypt what I deem to be sensitive in nature.

Your session cookie, which represents your privilege to read the news site, is "sensitive in nature".

and load slower because the proxy can't cache it when a fellow work colleague visited the site earlier in the day.

Just because your "fellow work colleague" paid for a subscription to your local news site doesn't mean you did as well. Even if the site isn't paywalled, you could install the root certificate of your office's HTTPS proxy and surf through that.

Re:Paywalls; HTTPS proxy

[LordWabbit2]

Your session cookie, which represents your privilege to read the news site, is "sensitive in nature".

It's not a behind paywall, it's a free site. So no, my cookie is not of a sensitive nature, and is only used to keep session state.

Just because your "fellow work colleague" paid for a subscription to your local news site doesn't mean you did as well. Even if the site isn't paywalled, you could install the root certificate of your office's HTTPS proxy and surf through that.

What network administrator in his right mind would hand out the root certificate to the HTTPS proxy?

BTW love the

"fellow work colleague"

it's like you don't have any.

Re:Paywalls; HTTPS proxy

[tepples]

It's not a behind paywall, it's a free site.

Sites that do not require payment still need to distinguish between users that have registered and visitors that have not as well as between users, such as for comment sections (are you LordWabbit2 or someone who Firesheeped his session cookie?) or "free reg. req." policies.

What network administrator in his right mind would hand out the root certificate to the HTTPS proxy?

Anyone who wants his users to know they are connecting to the correct proxy. Remember that a root certificate contains only the public key, not the private key.

it's about click referrer tracking

it seems nice that google is concerned about everyone's page traffic being secure, but really I think this is about referrer click tracking.
It turns out that if you go from a SSL page to a non-ssl page, the new page doesn't get a referrer in the request.

this really messes up the stats for the pages that are getting this traffic. they can't tell why the user came to them from the referrer. it might be a google search for terms that they can't see ... so they can't customize the ads to the user that way, and they can't trend what keywords people are looking for.

the more pages are SSL, the more they can do this

Because not all journals are open access

[tepples]

Why do we need security to view academic articles

The site needs SSL's confidentiality to protect your session cookie, which represents your subscription to the journal that includes the academic article, from getting Firesheeped by an eavesdropper. And you need SSL's integrity and authenticity to ensure that the data tables in the article aren't modified in transit.

SNI in ClientHello

[tepples]

The passive observer can see which IP you're going to, and in everything but Internet Explorer on Windows XP, the passive observer can see which hostname on that IP (the SNI field in the ClientHello message).

Firesheep a subscription

[tepples]

Perhaps operators of a read-only web site with a premium section are afraid that someone will read the premium section by Firesheeping your subscribed user account.

Renewal is manual

[tepples]

Startssl.com offers free certs

Unlike web hosting, StartSSL does not auto-renew.

contact your hosting provider, and they should be able to do this for free or a very small charge; if they want an arm and a leg, it's time for you to find a better host.

For a small site, WebFaction will probably work unless much of your audience uses Internet Explorer on Windows XP.

Forever day vulns in IE/XP

[tepples]

This "non-trivial number of users" is already compromised or very close to it. Because Microsoft is no longer issuing security updates for Internet Explorer on Windows XP, you can probably assume that Internet Explorer on Windows XP is insecure in other ways that could compromise your users' confidentiality.

SNI on Bingbot

[tepples]

Bing and Yahoo's web crawlers do not support SNI

When was that? Apparently Bingbot supports SNI as of three months ago.

Re:SNI on Bingbot

[gmack]

You might want to reread that. It's not supporting it, it is just ignoring the certificate error and indexing the site anyways. On the plus side it will work by accident as long as you don't tell apache to redirect to an error page on SNI failure. So it's mostly good news.

Lserver attack

[tepples]

let you track what certificates other people are seeing for a site

The Perspectives plug-in for Firefox uses the same route diversity technique to expose a man in the middle that attacks some routes to the server but not others. But the Perspectives white paper discloses that this approach is vulnerable to what it calls the "Lserver attack": a man in the middle between the server and its only connection to the Internet.

Am I tepples or an impostor?

[tepples]

its a free forum, why the fuck would they waste processor resources to encrypt the content? Their is nothing to secure

Other than the session cookies of its users. Am I the person who created the "tepples" account or someone who Firesheeped his session cookie?

Unpossible Terrifying Fuckery (5:erocS)

[tepples]

UTF must stand for Unpossible Terrifying Fuckery

For a while, Slashdot did support Unicode. This allowed vandals to not only evade the ASCII art lameness filter with foreign characters but also use bidirectional override characters to impose Unpossible Terrifying Fuckery on the site's layout.

BREACH mitigation padding

[tepples]

Your fertilizer page is 14674 bytes in length.

Plus 1-500 bytes of randomized padding added to the HTTP headers and the HTML comments that the server inserts to foil BREACH attacks.

Domain vs. org validated certs

[tepples]

DANE, Perspectives, and other CA-free approaches are equivalent in assurance level to a domain-validated certificate from a CA. The difference between a domain-validated certificate and an organization-validated certificate is that it's a lot harder for a typo squatter to get an organization-validated certificate for, say, "bankofamerrica.com". This is why the Comodo Dragon browser warns for domain-validated certificates.

Caching proxy's certificate

[tepples]

Caching in the browser works as well with HTTPS as it does with HTTP. A caching proxy works too so long as each user of the caching proxy imports the caching proxy's certificate.

Re:Caching proxy's certificate

. A caching proxy works too so long as each user of the caching proxy imports the caching proxy's certificate.

Yes, As long as you aren't using any apps that verify both ends of the cert communication, as long as you don't care or need to see whether certs have EV. As long as you don't mind the additional overhead of managing this process and you have full control of the client machines and you have the money to admin such a process with all the required exceptions, especially when working in some industries where SSL inspection of various classes of traffic can be illegal due to breach's of various privacy and confidentiality laws.

Re:Caching proxy's certificate

[tepples]

As long as you aren't using any apps that verify both ends of the cert communication

Apps like this probably don't work over an ordinary HTTP proxy anyway. Nor do they typically need caching, so you could probably just run them straight out to the Internet.

as long as you don't care or need to see whether certs have EV

Then have the proxy verify the EV and use a separate EV certificate (which you have accepted in your browser)

especially when working in some industries where SSL inspection of various classes of traffic can be illegal due to breach's of various privacy and confidentiality laws

If deep inspecting HTTPS for the sole purpose of office-wide caching is illegal, then deep inspecting HTTP ought to be illegal too.

How to get SSLashdot

[tepples]

All you have to do to enable SSLashdot is log in and subscribe.

No, Just No.

All communications should be encrypted at all times, otherwise it is a privacy leak waiting to happen.

Ofc

You don't have those already? .. Slacker.

Re:Has This Thread Been Hijacked By The NSA And IS

Encouraging the web to go 100% SSL only is a unquestionably a good thing.

Not if it means paying rent to CAs every year so they can sit on their fat ass and do nothing.

Did you miss the part about being able to obtain certs either very cheaply or free? Nice to see that you remove my link to HTTPS everywhere. EFF has been advocating SSL everywhere for years...so we can stop with the its only Google conspiracy BS.

The issues with performance were gone a decade ago...

Even if maintaining session state and TLS were completely free round trip delay and assuming the best case that session resumption occurs for all accesses you still have to eat additional round trips...delay that is quite noticeable to those accessing content internationally and over wireless or low bandwidth links.

What decade are you living in??? The only potential for any delay is on session establishment. For maximum performance and to minimize roundtrips , you should be keeping connections open rather than opening one on each request.

HTTP/1.1 came out in 1999, fifteen years ago! We now also have SPDY and websockets to improve things even more.

posts have been modded up.

Why should people have to screw with SSL when they have no secure content to offer? This is what makes no sense to me. Google is twisting arms to have their way.

Regardless of what you think of making everything "secure" I don't subscribe to the notion that ends should justify means.

Because it protects the people who read their content from getting their traffic messages. It also makes the spying more expensive. Have you been asleep for the last couple of years? Did you miss the Snowden thing?

Again, I don't understand why posts like yours have been modded up.

Publish the cert in a major newspaper

[davidwr]

Step 1: Sign your own cert(s).
Step 1b (optional): Use certs signed in step 1 to sign additional certs.
Step 2: Publish the hash of the certs in step 1 in one or more widely-printed, widely-available newspapers or magazines.
Step 3: On your web site host installable copies of all certs made in steps 1 and 1b, text and photographic copies of the printed hashes from step 2, and instructions on where to find copies of these publications (e.g. "go to your local library and look up XYZ newspaper dated DATE MONTH YEAR and go to section X page P and look in the 2nd column about 2 inches down").

While most people won't go to the trouble of going to the library, the fact that it is fairly easily check-able by people with access to a big-city library will make it that much more difficult for someone to launch a MITM attack without being caught. Not impossible, just much more difficult.

Re:It's not stupid

[ShieldW0lf]

Great illustration.

On my desktop, over the LAN, with caching forcibly disabled, HTTP took 5.3 seconds and was 9% slower than HTTPS.

On my mobile, over WiFi, again, with caching forcibly disabled, HTTP took 6.8 seconds and HTTPS took 10.8 seconds, 33% slower, AND instead of consumed 2 MB of data because caching couldn't be used.

On my mobile, over the cellular network, HTTP took 18 seconds, and HTTPS took 30 seconds, 69% slower, AND consumed 2 MB of data.

So, considering that mobile is huge and growing, THIS IS A DUMB IDEA.

Answer a question, mmell

What's it like getting your ass kicked by apk + downmodding to hide it 20x http://tech.slashdot.org/comme... ?

Our Secure Site

http "provides no data security"? You mean like Slashdot.org ?

Overreaction by Google

[Shirley+Marquez]

Warning about all sites that don't use TLS is excessive. Many web sites gather no information (they may not even issue cookies) and there is no reason for the warning on those sites. Warning about the lack of TLS on pages that include input forms might be a reasonable compromise; not all of those actually gather any sensitive information (online entertainment quizzes, for example, unless they ask for your email address or the like) but there is no way for the browser to know that.

My hack would be ...

[FreedomFirstThenPeac]

My hack would be that any non-secure website would have its background image replaced at the browser end by a red warning background with a watermark "WARNING" embedded in it.