undefined | Better HN

0 pointsTouche11y ago0 comments

That's so lame. It's so easy to set up a new website today, it's going to be a huge burden in the future. Some of us still make websites for fun, not as businesses. I guess I have to buy a cheap ssl certificate from some sleezy website every time I feel creative.

0 comments

icebraining11y ago

I'm puzzled, did you miss the announcement? The EFF, Mozilla, and others are creating a CA that will give free certs to everyone: https://letsencrypt.org/

byuu11y ago

Will they give out wildcard domain certificates?

mahouse11y ago

No.

stefantalpalaru11y ago

It's not live yet.

icebraining11y ago

Neither is HTTP/2, and much less is HTTP/1.1 deprecated, so I don't see the problem.

1 more reply

magicalist11y ago

Or we're about to see a whole lot of market incentive to make it easier to set up a site under TLS, which may only happen with this kind of unilateral move.

josteink11y ago

In the beginning of the internet, when it flourished and bloomed, it did so because it was open to tinkering, hacking and fun!

You could 1. set up a server, and just 2. enter the IP, and you had a website to hack on!

Now... You need to not only do that, you need to understand DNS and then pay a registrar to get a domain, you probably need to get hosting, because your router's secure ISP-side admin-interface may already be hogging port 443, you need to read up on how SSL/TLS and how certificates work in order to correctly request one, and then you need to figure out how those bits and pieces from that process fits into the server-stack you have decided to run with, and then you need to setup all those extra things server-side, which may or may not involve learning quite a bit of Unixy or sysadminy-things.

Phew

And that was step 1. See the contrast? In the playful internet of past times and glory you would have your product/experiment be done by now. In your "secure" internet you're merely done bootstrapping.

Yes, if you already have that, or already know all that stuff, that might not stop you moving along. For the amateur, who still should be the most welcome of all people on the internet for it to keep evolving, that's a complete show-stopper.

He'll just say "fuck this shit" most likely decide that this is just too big a task to even bother starting.

Forcing SSL everywhere on everyone is bad for the internet. I don't need to do everything "securely", and I sure as hell don't intend to setup every single experiment I do securely. Make it too much of a hurdle, and maybe I'll just stop experimenting instead.

And then, if not the internet, its spirit dies.

dark_photon11y ago

You are misunderstanding. The requirement for CA-issued certificates and most of the other things you are ranting about will still be only for HTTPS, which will still be optional. HTTP URIs in HTTP/2 will only need self-signed certificates which can be generated automatically by the server. Once servers get good support for it will not be any harder than HTTP/1.1.

1 more reply

cpeterso11y ago

You can still use HTTP/1.1.

josteink11y ago

So HTTP/2.0 was launched as the replacement for HTTP/1.1, but without support for one of the most commonly used features.

Is this a joke?

j / k navigate · click thread line to collapse

0 comments

icebraining11y ago

I'm puzzled, did you miss the announcement? The EFF, Mozilla, and others are creating a CA that will give free certs to everyone: https://letsencrypt.org/

byuu11y ago

Will they give out wildcard domain certificates?

mahouse11y ago

No.

stefantalpalaru11y ago

It's not live yet.

icebraining11y ago

Neither is HTTP/2, and much less is HTTP/1.1 deprecated, so I don't see the problem.

1 more reply

magicalist11y ago

Or we're about to see a whole lot of market incentive to make it easier to set up a site under TLS, which may only happen with this kind of unilateral move.

josteink11y ago

In the beginning of the internet, when it flourished and bloomed, it did so because it was open to tinkering, hacking and fun!

You could 1. set up a server, and just 2. enter the IP, and you had a website to hack on!

Phew

He'll just say "fuck this shit" most likely decide that this is just too big a task to even bother starting.

And then, if not the internet, its spirit dies.

dark_photon11y ago

1 more reply

cpeterso11y ago

You can still use HTTP/1.1.

josteink11y ago

So HTTP/2.0 was launched as the replacement for HTTP/1.1, but without support for one of the most commonly used features.

Is this a joke?

j / k navigate · click thread line to collapse