[aur-general] Securing the AUR website

Gordon JC Pearce gordonjcp at gjcp.net
Thu Sep 1 14:15:28 EDT 2011

On Thu, 01 Sep 2011 17:55:57 +0200
Philipp Überbacher <hollunder at lavabit.com> wrote:

> Do I understand it correctly that https-everywhere goes through a lot of
> trouble (browser-plugin with whitelist and custom rules for every page)
> for what could be achieved by simply defaulting to https?

I don't really understand why it's so important to break existing links by forcing everyone onto the https page.

What happens if you *don't want to use https*?  Why are the Arch webby bods forcing this nanny-state twatmuppetry down our throats?

Gordon JC Pearce MM0YEQ <gordonjcp at gjcp.net>

More information about the aur-general mailing list