Just make it so that your browser doesn't render any http delivered content. Pro... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

chopin on Aug 29, 2018 | parent | context | favorite | on: Why Static Websites Need HTTPS

Just make it so that your browser doesn't render any http delivered content. Problem solved. From a client point of view that's the only protection you can do. A MITM over http is undetectable for you. With current OSes and hardware there is no sandboxing which will protect you under all circumstances.

If you do this, site providers are forced to switch to https anyway.

dragonwriter on Aug 29, 2018 [–]

> If you do this, site providers are forced to switch to https anyway.

No, if everyone does this, providers are forced to switch. If you do it, it just means you're cut off from some portion of the web.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact