[aur-general] Securing the AUR website
Gordon JC Pearce
gordonjcp at gjcp.net
Thu Sep 1 14:15:28 EDT 2011
On Thu, 01 Sep 2011 17:55:57 +0200
Philipp Überbacher <hollunder at lavabit.com> wrote:
> Do I understand it correctly that https-everywhere goes through a lot of
> trouble (browser-plugin with whitelist and custom rules for every page)
> for what could be achieved by simply defaulting to https?
I don't really understand why it's so important to break existing links by forcing everyone onto the https page.
What happens if you *don't want to use https*? Why are the Arch webby bods forcing this nanny-state twatmuppetry down our throats?
Gordon JC Pearce MM0YEQ <gordonjcp at gjcp.net>
More information about the aur-general