To: ietf(_at_)ietf(_dot_)org
Cc: isdf(_at_)isoc(_dot_)org, keydist(_at_)cafax(_dot_)se,
openssl-users(_at_)openssl(_dot_)org
From: "John Stracke" <jstracke(_at_)incentivesystems(_dot_)com>
So users wanting this new service will be pretty motivated to switch DNS
servers when the time comes, what's the big deal in that?
The big deal is that some of the more restrictive ISPs may not permit
customers to bypass their DNS servers. Same as with HTTP interception
proxies.
That's as irrelevant as whether customers of some cable TV system
might not be able to get some new TV network, because they are not
getting Internet service. No matter what your bill might say, you
are not getting Internet service if you also get interception proxies
or even just port 25 blocking.
Noticing openssl-users(_at_)openssl(_dot_)org in the CC list of this thread
makes me
ponder the compatibility of TLS with SMTP and HTTP interception proxies.
Vernon Schryver vjs(_at_)rhyolite(_dot_)com