LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 05-06-2015, 09:54 PM   #1
BenCollver
Rogue Class
 
Registered: Sep 2006
Location: OR, USA
Distribution: Slackware64-15.0
Posts: 376
Blog Entries: 2

Rep: Reputation: 172Reputation: 172
TLS not necessary


Quote:
Data delivered over an unencrypted channel is insecure, untrustworthy, and trivially intercepted. We owe it to our users to protect the security, privacy, and integrity of their data all data must be encrypted while in flight and at rest.
https://istlsfastyet.com/

Empirically, TLS is slower than http over satellite Internet connections.

Quote:
Total of 30+ seconds to setup the SSL/TLS connection.
http://www.mailasail.com/Support/Why...Over-Satellite

It gets worse for concurrent TLS connections.

Finally, not all data on the Internet needs to be encrypted. For example, public domain books, educational materials, weather forecasts, and other mundane data are already dispersed on unencrypted channels such as FTP, newspapers, radio, libraries, etc.
 
Old 05-07-2015, 12:11 AM   #2
veerain
Senior Member
 
Registered: Mar 2005
Location: Earth bound to Helios
Distribution: Custom
Posts: 2,524

Rep: Reputation: 319Reputation: 319Reputation: 319Reputation: 319
Yes. http encryption should not be made mandatory.
 
Old 05-07-2015, 01:35 AM   #3
TenTenths
Senior Member
 
Registered: Aug 2011
Location: Dublin
Distribution: Centos 5 / 6 / 7
Posts: 3,497

Rep: Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570Reputation: 1570
Encryption always has a "price", however people really should get used to it as being the "normal" and expecting / demanding that it is used. If "the internet" and the standards behind it was being formulated today it would be a safe bet that for ALL the transport protocols that involve data entering or leaving a system (e.g. EVERYTHING!) then encryption would be built in rather than an add-on.
 
Old 05-07-2015, 07:54 AM   #4
BenCollver
Rogue Class
 
Registered: Sep 2006
Location: OR, USA
Distribution: Slackware64-15.0
Posts: 376

Original Poster
Blog Entries: 2

Rep: Reputation: 172Reputation: 172
It makes sense to distinguish between mandatory and normal. One wonders why it is necessary to encrypt, for example, a download of the US constitution. Encryption does not guarantee the integrity of the file. It is not private data. Maybe in this case, "normal" encryption is not necessary, but it is the "price" of thwarting online evildoers in general. What is the benefit of NOT encrypting it? Simplicity. This document does not require Javascript, TLS, video, etc. Though these normal things might have been used if the US constitution was being formulated today.
 
Old 05-07-2015, 08:15 AM   #5
maples
Member
 
Registered: Oct 2013
Location: IN, USA
Distribution: Arch, Debian Jessie
Posts: 814

Rep: Reputation: 265Reputation: 265Reputation: 265
Quote:
Originally Posted by BenCollver View Post
Finally, not all data on the Internet needs to be encrypted. For example, public domain books, educational materials, weather forecasts, and other mundane data are already dispersed on unencrypted channels such as FTP, newspapers, radio, libraries, etc.
Not for everything. If you do your banking online, you don't want that going across the Internet unencrypted.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
why do some mail servers send me email w/TLS and others not,even though i enable TLS? psycroptic Linux - Server 10 10-01-2013 03:20 PM
openvpn error: TLS Error: TLS key negotiation failed to occur within 60 seconds pendrive Linux - Networking 1 11-02-2011 08:39 AM
Why does TLS port accespt both TLS and plain TCP? kenneho Linux - Server 4 02-08-2009 07:30 AM
errno: TLS definition in /lib64/libc.so.6 section .tbss mismatches non-TLS reference johnpaulodonnell Programming 2 07-25-2008 04:37 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 09:25 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration