Brad Ideas
Crazy ideas, inventions, essays and links from Brad Templeton
Brad IdeasCrazy ideas, inventions, essays and links from Brad Templeton |
|
|
|
NavigationUser loginIf you like this blog, do me a favour and start your Amazon shopping (especially a kindle) from this link, and I'll get a cut. Recent comments
Top EssaysRecent blog posts
BlogrollFellow EFF Folks
Cory Doctorow Larry Lessig Ed Felten Dave Farber John Perry Barlow EFF Deep Links Dave Sifry Syndicate |
Nobody denies SSL (or TLS) would be great
But it’s simply not possible for you to have a browser that makes it a pain (or makes it impossible) to login at sites which don’t have SSL for the login process. This blog has a login, and because there is no great security consequence to your blog password being stolen, I have not set it up for SSL, and neither have a zillion other blogs and sites.
Anything that says, “You can’t take passwords until you upgrade” or “You can’t login until you upgrade” had better be a truly wonderful solution, because it won’t happen otherwise.
Stage 1 solutions are those that allow either me as a site to protect my users and me from phishing, or me as a user to protect myself, with no change required elsewhere.