Ok. It's a Firefox Add-on: https://www.eff.org/https-everywhere Questions: 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/ 2) Did anyone audited the "HTTPS Everywhere" code? 3) Can someone trust this Add-on? Is it safe to install/use? 4) If it's so great why isn't it more prevalent? What's youre opinion? Or answer? :\ Thanks!
On Wed, Jan 19, 2011 at 1:29 PM, S Mathias <smathias1972 at yahoo.com> wrote:> Ok. It's a Firefox Add-on: > > https://www.eff.org/https-everywhere > > Questions: > > 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/ > > 2) Did anyone audited the "HTTPS Everywhere" code? > > 3) Can someone trust this Add-on? Is it safe to install/use? > > 4) If it's so great why isn't it more prevalent? > > What's youre opinion? Or answer? :\ > > Thanks! > >Maybe cause it's not part of CentOS, or even Linux? Just a guess? -- Kind Regards Rudi Ahlers SoftDux Website: http://www.SoftDux.com Technical Blog: http://Blog.SoftDux.com Office: 087 805 9573 Cell: 082 554 7532
On Wed, 2011-01-19 at 03:29 -0800, S Mathias wrote:> Ok. It's a Firefox Add-on: > https://www.eff.org/https-everywhere > Questions: > 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/No clue.> 2) Did anyone audited the "HTTPS Everywhere" code?You'd have better luck asking in the https-everywhere community.> 3) Can someone trust this Add-on? Is it safe to install/use?No clue, but probably yes.> 4) If it's so great why isn't it more prevalent?Most people don't even know what SSL is.> What's youre opinion? Or answer? :\I think this approach is going nowhere and SSL/TLS encrypting images and icons is [resource] expensive and pointless in 99.44% of cases.
On Wed, Jan 19, 2011 at 03:29:12AM -0800, S Mathias wrote:> > 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/https://www.eff.org/https-everywhere/faq/ answers this.> 2) Did anyone audited the "HTTPS Everywhere" code?Go for it; the "xpi" file is actually just a Zip archive and the contents should all be readable text.> 3) Can someone trust this Add-on? Is it safe to install/use?I've been using it since it was originally announced' I've never had cause to question its safety. It operates fine and has no conflicts with any other add-on I use. There was a one-time problem with https redirects to wikipedia but that has long since been corrected.> 4) If it's so great why isn't it more prevalent?It's not yet a 1.0 release; this may have something to do with it.> What's youre opinion? Or answer? :\Everyone should be using it. Spread the word. John -- He may be mad, but there's method in his madness. There nearly always is method in madness. It's what drives men mad, being methodical. -- G. K. Chesterton, The Fad of the Fisherman (1922) -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <http://lists.centos.org/pipermail/centos/attachments/20110119/de7edcca/attachment-0002.sig>
On 01/19/2011 03:29 AM, S Mathias wrote:> Ok. It's a Firefox Add-on: > > https://www.eff.org/https-everywhere > > Questions: > > 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/https://www.eff.org/https-everywhere/faq/> 2) Did anyone audited the "HTTPS Everywhere" code?The place to ask that question would be the mail list for HTTPS everywhere: https://mail1.eff.org/mailman/listinfo/https-everywhere> 3) Can someone trust this Add-on? Is it safe to install/use?Safe in the sense that you can trust the people who wrote it not to be distributing a trojan? The EFF is behind it. They are about as trusted on this as anyone.> 4) If it's so great why isn't it more prevalent? >See #1. ;) Most of these question would be better addressed to the HTTPS everywhere maillist. -- Benjamin Franz
From: S Mathias <smathias1972 at yahoo.com>> Ok. It's a Firefox Add-on: > https://www.eff.org/https-everywhere > Questions: > 1) But: Why can't i find it on the offical Firefox Add-ons site?: >https://addons.mozilla.org/en-US/firefox/maybe because they did not choose to put it there...? maybe they have more trust in their own servers.> 2) Did anyone audited the "HTTPS Everywhere" code?Would you trust me if I say I did...?> 3) Can someone trust this Add-on? Is it safe to install/use?As much as you can trust all the other OS/softwares out there... The EFF and the Tor project are supposed to be good people... but who knows...> 4) If it's so great why isn't it more prevalent?maybe because many people have no idea what is this https thing... maybe because https is more resource hungry on both sides? JD
Let's talk about CentOS on this list, shall we?
On 19/01/11 12:41, John R. Dennison wrote:> On Wed, Jan 19, 2011 at 03:29:12AM -0800, S Mathias wrote:[...snip...]> >> 4) If it's so great why isn't it more prevalent? > > It's not yet a 1.0 release; this may have something to do with > it.The version number doesn't need to say anything at all. If a software version is 0.7, doesn't mean it's less stable or useful than if the version is 1.0. It all depends on the developer(s) and how they evaluate their work. kind regards, David Sommerseth