Have you tried the https-everywhere add on ?

Myxt
Posts: 4141
Joined: Sat Mar 05, 2011 6:18 am

RE: Have you tried the https-everywhere add on ?

Post by Myxt » Sun Jul 06, 2014 3:56 am

OK, my take on https-everywhere is:

1. Yes,

it's a nice ~simple~ way to seek and use reasonably secure connections already in place. It won't stop a few dangerous people, but it will stop the multitude of Internet barnacles who really don't need to know everything about you.

2. No,

I do not want something deciding for me which door I will use to enter a site. I do not want to make a career of babysitting browser add-ons, figuring out why they don't play well together, and waiting for them to finish nattering over their specific concerns and updates so I can simply view a page.

I practice pretty good Internet hygiene, including refusing to do any business over HTTP. Any sites I use which require credentials already automatically load themselves as HTTPS.

If needed, I can easily type an "S" after HTTP in my browser's address bar and hit GO. No bloat required.

alphacentauri
Posts: 3291
Joined: Mon Nov 02, 2009 12:52 pm

RE: Have you tried the https-everywhere add on ?

Post by alphacentauri » Sun Jul 06, 2014 4:27 am

When I call someone on the phone, the presumption is that the police are not listening in unless they have a court order.

When I use insecure internet connections, the presumption is that they are listening.

TOR is just a means of resetting internet connections to be like phone connections, having privacy as the default.

Pedophiles can use TOR. People who live in dictatorships can use TOR. In order to allow the latter people some possibility of freedom of expression without being arrested and tortured, we have to concede that means of communication to criminals as well. If the police have probable cause, no one is stopping them from getting a court order to wiretap the home of suspected pedophiles nor a search warrant to seize their computers, as was the case before the internet.

Maintaining democracy is not easy. You have to strike a balance between having sociopathic criminals running loose in the streets vs. having sociopathic criminals running the military and police. You can't be 100% safe from either. The wisest overall situation is to accept a certain amount of risk of harm from either, so long as the risks balance each other.

Colorado.Chris
Posts: 52
Joined: Fri Mar 16, 2012 10:23 pm

RE: Have you tried the https-everywhere add on ?

Post by Colorado.Chris » Sun Jul 06, 2014 7:36 pm

I have HTTPS addon from EFF on my machines by default. It isn't perfect, though. It can break a few things. Disable "partial" sites in the dropdown menu & you should be good to go

Guest

RE: Have you tried the https-everywhere add on ?

Post by Guest » Sun Jul 06, 2014 8:32 pm

@alphacentauri =
" You have to strike a balance between having sociopathic criminals running loose in the streets vs. having sociopathic criminals running the military and police. You can't be 100% safe from either. The wisest overall situation is to accept a certain amount of risk of harm from either, so long as the risks balance each other"
Very difficult words,but I get your point and is valid
Thanks
@Colorado.Chris =
"I have HTTPS addon from EFF on my machines by default"
I am going into my fourth day, so far no problems in the other hand I started to use Myxt's idea, and that could be a game changer
I believe that 4 starts would be fair and with the instructions to clear the cache [ I did not see it on the FAQ ] and with Myxt Batch program
5 stars is possible
Thank you :)

luntrus
Posts: 24
Joined: Sat Jun 07, 2014 5:02 pm

RE: Have you tried the https-everywhere add on ?

Post by luntrus » Sun Jul 06, 2014 10:52 pm

For some sites it can be a plus on others it could be a minus, as certain av-solutions generally only scan http sites.
Check https only sites via: https://sslcheck.globalsign.com/nl & http://www.sslshopper.com/ssl-checker.html
and of-course be guided by our WOT ratings!
For https check with online checkers and for best policy install Recx Security Analyzer extension in the browser.
Generally EFF has good initiatives and I welcome their activities.



evilfantasy
Posts: 3940
Joined: Thu Dec 25, 2008 4:08 am

RE: Have you tried the https-everywhere add on ?

Post by evilfantasy » Sun Jul 06, 2014 11:46 pm

<quote user="luntrus">
For https check with online checkers and for best policy install Recx Security Analyzer extension in the browser.[/quote]

According to [url=http://recxltd.blogspot.com/2011/08/how-we-built-recx-security-analyzer.html t=_self]the description of Recx Security Analyzer[/url] it sounds like it would be a lot of extra bloat with very little full time benefit. Don't get me wrong, I do think it is very interesting and likely useful for specific websites but I think I'll pass for now. Bookmarked in case my curiosity gets to me. ;)

I feel the same way about https-everywhere. I'm giving up browser performance on a full time basis to encrypt websites that really don't need to be encrypted in the first place.


Post Reply

Who is online

Users browsing this forum: No registered users and 3 guests