SoylentNews is people
SoylentNews
from the it's-the-end-of-the-web-as-we-know-it-and-i-feel-fine dept.
Phoronix reports the Mozilla Security Engineering team is planning to make their browser useless for browsing much of the World Wide Web, by deprecating insecure HTTP.
Richard Barnes of Mozilla writes:
In order to encourage web developers to move from HTTP to HTTPS, I would like to propose establishing a deprecation plan for HTTP without security. Broadly speaking, this plan would entail limiting new features to secure contexts, followed by gradually removing legacy features from insecure contexts. Having an overall program for HTTP deprecation makes a clear statement to the web community that the time for plaintext is over -- it tells the world that the new web uses HTTPS, so if you want to use new things, you need to provide security.
See also this document outlining the initial plans.
(Score: 4, Interesting) by Adamsjas on Wednesday April 15 2015, @05:41AM
I agree. Mozilla: Why is encryption a bolt on in Thunderbird instead of built in?
(Score: 2, Informative) by David_W on Wednesday April 15 2015, @01:24PM
Actually, encryption is built-in to Thunderbird. However, it is only the certificate-based kind of encryption. The bolt-on (Enigmail) is for PGP-based web of trust encryption.