Hello Paul, Dne 22.1.2015 v 16:48 Paul Civati napsal(a):
2. There have been far more security holes in https/TLS/SSL of recent than plain HTTP as far as I can tell. Therefore I would say that https is less secure unless you have sensitive information to transport.
Do you have any citation on this? Given the fact that HTTPS is plain HTTP with added TLS encryption layer, I cannot see any _technical_* way it could be less secure than plain HTTP. All recent security holes discovered in TLS could have been used only to view the plaintext, ie. the same text that HTTP transmits openly. *) OK there may be a social part of the problem that some well educated users could share some confidental information using HTTPS but not HTTP. But it's not the case here since as you pointed out, www.ripe.net is mainly informational website with almost no personal or confidental data. Best regards, Ondřej Caletka CESNET