[openstreetmap-website] Website should redirect HTTP connections to HTTPS (#833)

Frederik Ramm notifications at github.com
Thu Nov 13 21:00:13 UTC 2014

Agree that users should be educated about HTTP vs HTTPS. Disagree that OSM should be who educates them. Next thing you'll request is that we force people to change their passwords every three months, and passwords have to contain at least two uppercase and two lowercase letters, two numbers and two special characters, but not in sequence. Just to protect them of course!

If you're starting down the road of trying to protect people from inadvertently giving up their privacy, then you'd also have to add huge red blinking messages when people upload GPS tracks or in fact edit any data. Are you sure that you want the world to know you've been to <town> on on or before <date>? Are you aware that this information will be essentially un-deletable for ever? Have you really thought this through? Etc.

Reply to this email directly or view it on GitHub:
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20141113/de1635e7/attachment.html>

More information about the rails-dev mailing list