Stefan Tilkov · Mar 13, 2014 · 9:07 PM UTC

Stefan Tilkov @stilkov

13 Mar 2014

I am somewhat confused as to my own motives, but I’m finding it very hard to come to terms with the idea that everything should be SSL.

Sergey Shishkin · Mar 14, 2014 · 6:34 AM UTC

Sergey Shishkin @sshishkin

14 Mar 2014

@stilkov what about a lesser constraint that everything should be signed if not encrypted?

Stefan Tilkov · Mar 14, 2014 · 6:36 AM UTC

Stefan Tilkov · Mar 14, 2014 · 6:36 AM UTC

Stefan Tilkov @stilkov

14 Mar 2014

Replying to @sshishkin

@sshishkin I could live with that much more easily. Not going to happen any time soon, though (with HTTP, that is).

Mar 14, 2014 · 6:36 AM UTC

Sergey Shishkin · Mar 14, 2014 · 8:29 AM UTC

Sergey Shishkin @sshishkin

14 Mar 2014

Replying to @stilkov

@stilkov oftentimes authentication is what people really need when they say encryption. Take software package managers as an example.