[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Captive-portals] Arguments against (any) Capport "API"

To: David Bird <[email protected]>
Subject: Re: [Captive-portals] Arguments against (any) Capport "API"
From: Martin Thomson <[email protected]>
Date: Tue, 18 Apr 2017 10:50:44 +1000
Archived-at: <https://mailarchive.ietf.org/arch/msg/captive-portals/ME5t6v9QGmzMdXZIdSIVQp5C2Wk>
Authentication-results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Cc: Martin J. Dürst <[email protected]>, Michael Richardson <[email protected]>, "[email protected]" <[email protected]>
Delivered-to: [email protected]
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=8wcqZ/OwmAWqMClOUz6XJXOpWRNNorH2BFPUp5Vod+A=; b=VPcqygjcNspWG/GwyvJtmEw8dgNvKC+/d8PeopDb+vIhvAlI6DXF8LQVjfojnhuPua bOz5XocYIUG07UikN0OlVCCs58hBkS27I8PYH6Ob5r12kF4yBk77temxhlxqejN04SIT 4m0mmAKs84sEKC2AWiTYWY1bgQrEAEcD4kYuTEGUDLV+SrNynbwd7w93d6m6Casi1pWV NyuEj5dALs7d57nuYtXGXf0HbHCmidHo6Z6kiZ4yYwk2nwaKXVQexvXCD23gDfahnkW3 SZe421Myr0ys3mIoSwycL2d49JrepUMruy3eQIsSkYx8vRjyxEFq4VWHyYpt6xBKH3ZI yB/Q==
In-reply-to: <CADo9JyVBV7Pf29gs1Fxbrbdxf_rXPJQNKc7xEhrHuAxkYJcR=g@mail.gmail.com>
List-archive: <https://mailarchive.ietf.org/arch/browse/captive-portals/>
List-help: <mailto:[email protected]?subject=help>
List-id: Discussion of issues related to captive portals <captive-portals.ietf.org>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.ietf.org/mailman/listinfo/captive-portals>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/options/captive-portals>, <mailto:[email protected]?subject=unsubscribe>
References: <CADo9JyU2wiEBB4L7ADSybt9se7jCN764JSEoHuGTcuiU_jDscQ@mail.gmail.com> <[email protected]> <CADo9JyVr07w5GRpF+UzSBHRuo=V=3p9MeyhFdzB+5pZk7_amNw@mail.gmail.com> <D76BBBCF97F57144BB5FCF08007244A77059CE49@wtl-exchp-1.sandvine.com> <CADo9JyUnOfXSfXufzSk=QajyG2KXQfKzmQayca1kitRoAuwsqg@mail.gmail.com> <[email protected]> <CADo9JyXPUPLU4aKueT7HxTU1CYfY=HrhqRz0OcCu4z1AivP-hg@mail.gmail.com> <E8355113905631478EFF04F5AA706E9870579488@wtl-exchp-1.sandvine.com> <[email protected]> <CADo9JyW3r7QzKsW78EuM9FOqW1waYGzjfuD7iTdWBXAR4eY8qQ@mail.gmail.com> <CABkgnnXA7PM65=20YNzziLR6Gv7ZpuSWvo0gHWt7aRdzAWr2bQ@mail.gmail.com> <[email protected]> <CADo9JyVBV7Pf29gs1Fxbrbdxf_rXPJQNKc7xEhrHuAxkYJcR=g@mail.gmail.com>

On 7 April 2017 at 22:08, David Bird <[email protected]> wrote:
> To be clear, Gmail hyperlinked boingo.com for me... but, the point is that
> the UE/capport detection parsed and validated (checked the cert and cert
> status) of the FQDN. It is not some URL with questionable formatting...

I think that you missed my point.

The foundation for HTTPS is that there is an expectation of server
identity when navigation is initiated.  The same cannot be said in
this context.

Follow-Ups:
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Dave Dolson <[email protected]>

References:
- [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Mikael Abrahamsson <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Kyle Larose <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Christian Saunders <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Dave Dolson <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Michael Richardson <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Martin Thomson <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: Martin J. Dürst <[email protected]>
- Re: [Captive-portals] Arguments against (any) Capport "API"
  - From: David Bird <[email protected]>

Prev by Date: Re: [Captive-portals] Improve the user experience of captive portals as they're commonly understood and currently deployed
Next by Date: Re: [Captive-portals] Arguments against (any) Capport "API"
Previous by thread: Re: [Captive-portals] Arguments against (any) Capport "API"
Next by thread: Re: [Captive-portals] Arguments against (any) Capport "API"
Index(es):
- Date
- Thread