[HTTPS-E Rulesets] reddit.com wants EFF to disable HTTPS???
Neil Williams
neil at reddit.com
Wed Aug 10 23:12:42 PDT 2011
Overload was never the concern. Our systems just aren't correctly
configured right now to prevent occasional certificate errors.
On Wed, Aug 10, 2011 at 9:58 PM, Mike Perry <mikeperry at fscked.org> wrote:
> Thus spake Osama Khalid (osamak at gnu.org):
>
>> On Tue, Aug 09, 2011 at 10:47:29AM -0700, Peter Eckersley wrote:
>> > Despite the diversity of views in the project's open source ocmmunity, we
>> > were, and are still, planning to push an update that disables the ruleset.
>> > That will probably happen today.
>>
>> Peter, I think we should move the reddit.com -> pay.reddit.com rule to
>> Reddit+ (which is disabled by default) and keep other Reddit rules in
>> effect, which only redirect thumbnails and some images to their
>> original Amazon's S3 URL with HTTPS, and this doesn't cause overload
>> issues.
>
> Are overload issues the only reason for disabling the rule by default?
> Or are there other issues?
>
> What is the user experience when overload happens, and how often does
> it happen?
>
>
>
> --
> Mike Perry
> Mad Computer Scientist
> fscked.org evil labs
>
More information about the HTTPS-Everywhere-Rules
mailing list