Options:
- # Session Start: Mon Sep 15 00:00:00 2014
- # Session Ident: #whatwg
- # [00:01] * Quits: yoav (~yoav@rrcs-208-105-48-82.nyc.biz.rr.com) (Read error: Connection reset by peer)
- # [00:01] * Joins: yoav_ (~yoav@rrcs-208-105-48-82.nyc.biz.rr.com)
- # [00:08] * Quits: svl (~me@ip565744a7.direct-adsl.nl) (Quit: And back he spurred like a madman, shrieking a curse to the sky.)
- # [00:09] * Quits: Ms2ger (~Ms2ger@91.182.8.131) (Quit: nn)
- # [00:11] * Quits: daleharvey (sid513@gateway/web/irccloud.com/x-lmdnmlvtewevgdpk) (Read error: Connection reset by peer)
- # [00:12] <mathiasbynens> annevk: yep
- # [00:13] * Quits: Areks (~Areks@95-24-191-184.broadband.corbina.ru) (Ping timeout: 272 seconds)
- # [00:15] * Joins: daleharvey____ (sid513@gateway/web/irccloud.com/x-zwtrihltapfmvxbr)
- # [00:17] * Quits: karlcow (~karl@nerval.la-grange.net) (Quit: This computer has gone to sleep)
- # [00:20] * Joins: scor (~scor@drupal.org/user/52142/view)
- # [00:22] * Joins: KevinMarks (~KevinMark@199.223.125.168)
- # [00:29] * Quits: polarbearBalls (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com) (Ping timeout: 272 seconds)
- # [00:32] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Remote host closed the connection)
- # [00:37] * Quits: paulohp (~paulohp@201.52.249.159) (Remote host closed the connection)
- # [00:38] * Joins: paulohp (~paulohp@201.52.249.159)
- # [00:40] * Quits: Smylers (~smylers@host86-186-193-22.range86-186.btcentralplus.com) (Quit: Leaving.)
- # [00:40] * Quits: Joseph_Silber (~JosephSil@ool-44c3e80a.static.optonline.net) (Read error: Connection reset by peer)
- # [00:42] * Joins: JosephSilber (~JosephSil@ool-44c3e80a.static.optonline.net)
- # [00:42] * Quits: paulohp (~paulohp@201.52.249.159) (Ping timeout: 246 seconds)
- # [00:57] * Joins: polarbearBalls (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com)
- # [01:02] * Joins: markkes (~markkes@62.207.90.201)
- # [01:08] * Quits: KevinMarks (~KevinMark@199.223.125.168) (Ping timeout: 250 seconds)
- # [01:12] * Joins: tantek (~tantek@67.139.65.163)
- # [01:13] * Quits: tantek (~tantek@67.139.65.163) (Client Quit)
- # [01:13] * Joins: lmclister (~lmclister@c-73-189-66-135.hsd1.ca.comcast.net)
- # [01:14] * Joins: karlcow (~karl@nerval.la-grange.net)
- # [01:14] * Joins: sicking (~sicking@c-98-210-159-193.hsd1.ca.comcast.net)
- # [01:17] * Joins: hasather (~hasather@80.91.33.141)
- # [01:18] * Quits: karlcow (~karl@nerval.la-grange.net) (Client Quit)
- # [01:19] * Joins: karlcow (~karl@nerval.la-grange.net)
- # [01:19] * Quits: karlcow (~karl@nerval.la-grange.net) (Remote host closed the connection)
- # [01:19] * Joins: karlcow (~karl@nerval.la-grange.net)
- # [01:22] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 260 seconds)
- # [01:24] * Joins: KevinMarks (~KevinMark@199.223.125.168)
- # [01:29] * Quits: scor (~scor@drupal.org/user/52142/view) (Quit: scor)
- # [01:31] * Quits: markkes (~markkes@62.207.90.201) (Ping timeout: 258 seconds)
- # [01:31] * Joins: markkes (~markkes@62.207.90.201)
- # [01:33] * Quits: yoav_ (~yoav@rrcs-208-105-48-82.nyc.biz.rr.com) (Ping timeout: 250 seconds)
- # [01:33] * Joins: markkes2 (~markkes@62.207.90.201)
- # [01:34] * Joins: tantek (~tantek@67.139.65.163)
- # [01:36] * Quits: markkes (~markkes@62.207.90.201) (Ping timeout: 258 seconds)
- # [01:37] * Quits: Dashiva (Dashiva@wikia/Dashiva) (Read error: Connection reset by peer)
- # [01:38] * Joins: Dashiva (Dashiva@wikia/Dashiva)
- # [01:38] * Quits: markkes2 (~markkes@62.207.90.201) (Ping timeout: 258 seconds)
- # [01:38] * Joins: markkes (~markkes@62.207.90.201)
- # [01:40] <Hixie> ok, ssl certs are set up for *.whatwg.org and *.spec.whatwg.org
- # [01:49] * Joins: lmcliste_ (~lmclister@c-73-189-66-135.hsd1.ca.comcast.net)
- # [01:51] * Quits: lmclister (~lmclister@c-73-189-66-135.hsd1.ca.comcast.net) (Ping timeout: 258 seconds)
- # [01:53] * Quits: tantek (~tantek@67.139.65.163) (Ping timeout: 255 seconds)
- # [02:03] * Joins: ato_ (sid16069@gateway/web/irccloud.com/session)
- # [02:04] * Joins: mattur__ (sid16049@gateway/web/irccloud.com/session)
- # [02:04] * Joins: dfreedm_ (sid7859@gateway/web/irccloud.com/session)
- # [02:05] * Joins: astearns_ (sid15080@gateway/web/irccloud.com/session)
- # [02:05] * Joins: wakaba_ (~wakaba@176.184.128.101.dy.bbexcite.jp)
- # [02:06] * Quits: annevk (~annevk@46-127-136-57.dynamic.hispeed.ch) (Read error: Connection reset by peer)
- # [02:06] * Joins: Domenic_ (sid10976@gateway/web/irccloud.com/session)
- # [02:06] * Joins: sspi______ (sid34681@gateway/web/irccloud.com/session)
- # [02:07] * Joins: jxs_ (~joaoxsoul@media.fcsh.unl.pt)
- # [02:07] * Joins: karlcow_ (~karl@nerval.la-grange.net)
- # [02:07] * Joins: JakeA_ (uid3836@gateway/web/irccloud.com/session)
- # [02:07] * Joins: JonathanNeal_ (sid5831@gateway/web/irccloud.com/session)
- # [02:08] * Joins: nephyrin` (~neph@2620:101:80fc:224:7a2b:cbff:fe9e:2e67)
- # [02:08] * Joins: jevs__ (sid23814@gateway/web/irccloud.com/session)
- # [02:08] * Joins: phuu__ (sid7721@gateway/web/irccloud.com/session)
- # [02:08] * Joins: zama (zama@2604:180::502b:135a)
- # [02:08] * Joins: Amaan_ (uid4967@gateway/web/irccloud.com/session)
- # [02:08] * Quits: jxs (~joaoxsoul@media.fcsh.unl.pt) (Disconnected by services)
- # [02:08] * jxs_ is now known as jxs
- # [02:09] * Joins: hayato_ (sid20728@gateway/web/irccloud.com/session)
- # [02:09] * Joins: slightlyoff_ (sid1768@gateway/web/irccloud.com/session)
- # [02:09] * Joins: gnarf_ (gnarf@unaffiliated/gnarf)
- # [02:10] * Joins: tripu- (~tripu@saborbia.com)
- # [02:10] * Joins: wanderview_ (sid22777@gateway/web/irccloud.com/session)
- # [02:10] * Joins: Garbee_ (uid21171@gateway/web/irccloud.com/session)
- # [02:11] * Joins: parshap__ (sid18846@gateway/web/irccloud.com/session)
- # [02:12] * Joins: dmurph_ (sid42525@gateway/web/irccloud.com/session)
- # [02:14] * Quits: roc (~chatzilla@121-99-141-164.bng1.tvc.orcon.net.nz) (Ping timeout: 245 seconds)
- # [02:15] * Quits: erlehmann (~erlehmann@g226041003.adsl.alicedsl.de) (Quit: Die demokratieerhaltende Whistleblowerplattform Krautchan freut sich immer über Spenden.)
- # [02:16] * Quits: KevinMarks (~KevinMark@199.223.125.168) (*.net *.split)
- # [02:16] * Quits: karlcow (~karl@nerval.la-grange.net) (*.net *.split)
- # [02:16] * Quits: wakaba (~wakaba@176.184.128.101.dy.bbexcite.jp) (*.net *.split)
- # [02:16] * Quits: Amaan (uid4967@gateway/web/irccloud.com/x-yiftfatqhukckczh) (*.net *.split)
- # [02:16] * Quits: hayato (sid20728@gateway/web/irccloud.com/x-dytncvimmqisaaio) (*.net *.split)
- # [02:16] * Quits: miketaylr_ (~miketaylr@192.241.222.35) (*.net *.split)
- # [02:16] * Quits: mattur_ (sid16049@gateway/web/irccloud.com/x-lcgikjnzewhigbnf) (*.net *.split)
- # [02:16] * Quits: wanderview (sid22777@gateway/web/irccloud.com/x-atntnnomcqnstfqp) (*.net *.split)
- # [02:16] * Quits: dmurph (sid42525@gateway/web/irccloud.com/x-zpsyjorlvmchpxme) (*.net *.split)
- # [02:16] * Quits: JonathanNeal (sid5831@gateway/web/irccloud.com/x-rkmqahtedwczdexl) (*.net *.split)
- # [02:16] * Quits: parshap_ (sid18846@gateway/web/irccloud.com/x-turdjmryqjxkpwou) (*.net *.split)
- # [02:16] * Quits: dfreedm (sid7859@gateway/web/irccloud.com/x-klxwmmbiskrwxtzq) (*.net *.split)
- # [02:16] * Quits: Garbee (uid21171@gateway/web/irccloud.com/x-rdtaqsilifthbrgg) (*.net *.split)
- # [02:16] * Quits: Domenic (sid10976@gateway/web/irccloud.com/x-scidkqjqvfwhqrri) (*.net *.split)
- # [02:16] * Quits: phuu_ (sid7721@gateway/web/irccloud.com/x-lrzovfzgldqwgbzd) (*.net *.split)
- # [02:16] * Quits: sspi_____ (uid34681@gateway/web/irccloud.com/x-jeltouqozabpiado) (*.net *.split)
- # [02:16] * Quits: JakeA (sid3836@gateway/web/irccloud.com/x-hwcxdkqqovcxuqlu) (*.net *.split)
- # [02:16] * Quits: slightlyoff (sid1768@gateway/web/irccloud.com/x-vnskqqikkftofeoq) (*.net *.split)
- # [02:16] * Quits: jevs_ (sid23814@gateway/web/irccloud.com/x-saihxieuymyvstpc) (*.net *.split)
- # [02:16] * Quits: ato (sid16069@gateway/web/irccloud.com/x-ztjpblwcqwjymzup) (*.net *.split)
- # [02:16] * Quits: astearns (sid15080@gateway/web/irccloud.com/x-wsweqdulifomftez) (*.net *.split)
- # [02:16] * Quits: kirjs_____ (sid25169@gateway/web/irccloud.com/x-lteipoflrkkzvroo) (*.net *.split)
- # [02:16] * Quits: moo-_- (miohtama@lakka.kapsi.fi) (*.net *.split)
- # [02:16] * Quits: gnarf (gnarf@unaffiliated/gnarf) (*.net *.split)
- # [02:16] * Quits: tripu (~tripu@saborbia.com) (*.net *.split)
- # [02:16] * Quits: zama_ (zama@unaffiliated/stryx/x-3871776) (*.net *.split)
- # [02:16] * Quits: nephyrin (~neph@2620:101:80fc:224:7a2b:cbff:fe9e:2e67) (*.net *.split)
- # [02:16] * hayato_ is now known as hayato
- # [02:16] * wanderview_ is now known as wanderview
- # [02:16] * mattur__ is now known as mattur_
- # [02:16] * ato_ is now known as ato
- # [02:16] * dmurph_ is now known as dmurph
- # [02:16] * dfreedm_ is now known as dfreedm
- # [02:17] * jevs__ is now known as jevs_
- # [02:17] * astearns_ is now known as astearns
- # [02:17] * phuu__ is now known as phuu_
- # [02:17] * slightlyoff_ is now known as slightlyoff
- # [02:17] * Garbee_ is now known as Garbee
- # [02:17] * JakeA_ is now known as JakeA
- # [02:18] * JonathanNeal_ is now known as JonathanNeal
- # [02:18] * Amaan_ is now known as Amaan
- # [02:18] * Quits: mven (~textual@ip68-104-38-84.lv.lv.cox.net) (Quit: My MacBook Pro has gone to sleep. ZZZzzz…)
- # [02:18] * Garbee is now known as Guest32898
- # [02:18] * Domenic_ is now known as Domenic
- # [02:19] * Joins: kirjs_____ (sid25169@gateway/web/irccloud.com/session)
- # [02:20] * gsnedder1 is now known as gsnedders
- # [02:22] * Joins: moo-_- (miohtama@lakka.kapsi.fi)
- # [02:22] * Joins: KevinMarks (~KevinMark@199.223.125.168)
- # [02:28] * Quits: KevinMarks (~KevinMark@199.223.125.168) (Ping timeout: 272 seconds)
- # [02:32] * Joins: tantek (~tantek@172.56.33.216)
- # [02:34] * Joins: yoav_ (~yoav@rrcs-208-105-48-82.nyc.biz.rr.com)
- # [02:35] * Quits: tantek (~tantek@172.56.33.216) (Client Quit)
- # [02:36] * Joins: wakaba (~wakaba@176.184.128.101.dy.bbexcite.jp)
- # [02:38] * Quits: wakaba_ (~wakaba@176.184.128.101.dy.bbexcite.jp) (Read error: Connection reset by peer)
- # [02:39] * Quits: lmcliste_ (~lmclister@c-73-189-66-135.hsd1.ca.comcast.net)
- # [03:00] * Joins: caitp- (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [03:00] * Quits: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Ping timeout: 260 seconds)
- # [03:03] * Quits: wakaba (~wakaba@176.184.128.101.dy.bbexcite.jp) (Ping timeout: 246 seconds)
- # [03:08] * Joins: wakaba (~wakaba@176.184.128.101.dy.bbexcite.jp)
- # [03:26] * Joins: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64)
- # [03:27] * Quits: boogyman (~boogyman@pdpc/supporter/professional/boogyman) (Quit: ChatZilla 0.9.90.1 [Firefox 31.0/20140716183446])
- # [03:31] * Quits: karlcow_ (~karl@nerval.la-grange.net) (Quit: :tiuQ tiuq sah woclrak)
- # [03:46] * Quits: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64) (Ping timeout: 260 seconds)
- # [03:46] * Quits: Goplat (~goplat@reactos/developer/Goplat) (Remote host closed the connection)
- # [03:49] * Joins: hasather (~hasather@80.91.33.141)
- # [03:50] * Joins: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64)
- # [03:51] * Quits: ericandrewlewis (~Adium@ool-ad03aea4.dyn.optonline.net) (Quit: Leaving.)
- # [03:59] * Quits: wakaba (~wakaba@176.184.128.101.dy.bbexcite.jp) (Ping timeout: 246 seconds)
- # [04:01] * Quits: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64) (Ping timeout: 272 seconds)
- # [04:04] * Joins: scor (~scor@drupal.org/user/52142/view)
- # [04:07] * Joins: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64)
- # [04:16] * Joins: dbaron__ (~dbaron@50.0.192.112)
- # [04:24] * Quits: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64) (Remote host closed the connection)
- # [04:30] * Joins: Goplat (~goplat@reactos/developer/Goplat)
- # [04:32] * Quits: yoav_ (~yoav@rrcs-208-105-48-82.nyc.biz.rr.com) (Quit: Ex-Chat)
- # [04:37] * Quits: seventh (seventh@192.64.6.15) (Ping timeout: 260 seconds)
- # [04:41] * Joins: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64)
- # [04:45] * Joins: boogyman (~boogyman@50.167.218.18)
- # [04:45] * Quits: boogyman (~boogyman@50.167.218.18) (Changing host)
- # [04:45] * Joins: boogyman (~boogyman@pdpc/supporter/professional/boogyman)
- # [04:48] * Quits: sicking (~sicking@c-98-210-159-193.hsd1.ca.comcast.net) (Quit: sicking)
- # [04:50] * Quits: hasather (~hasather@80.91.33.141) (Remote host closed the connection)
- # [04:50] * Joins: hasather (~hasather@80.91.33.141)
- # [04:55] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 272 seconds)
- # [04:57] * Joins: mven (~textual@ip68-104-38-84.lv.lv.cox.net)
- # [05:07] <Domenic> https://www.whatwg.org/ has mixed content
- # [05:08] <Domenic> and all the links go to http://
- # [05:08] <Domenic> I guess the //-ification of the homepage hasn't happened yet
- # [05:11] * Guest83437 is now known as jamesr
- # [05:11] * jamesr is now known as jamesr_
- # [05:17] * Quits: markkes (~markkes@62.207.90.201) (Ping timeout: 258 seconds)
- # [05:33] * Quits: polarbearBalls (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com) (Ping timeout: 272 seconds)
- # [05:48] * Joins: arunranga (~otherarun@dsl-173-206-232-186.tor.primus.ca)
- # [05:49] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [06:21] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Read error: Connection reset by peer)
- # [06:21] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [06:24] * Joins: karlcow (~karl@nerval.la-grange.net)
- # [06:37] * Quits: dbaron__ (~dbaron@50.0.192.112) (Ping timeout: 250 seconds)
- # [06:42] * Guest42099_ is now known as Ziggy
- # [06:42] * Quits: arunranga (~otherarun@dsl-173-206-232-186.tor.primus.ca) (Quit: arunranga)
- # [06:54] * Quits: mven (~textual@ip68-104-38-84.lv.lv.cox.net) (Ping timeout: 258 seconds)
- # [06:56] * Joins: mven (~textual@ip68-104-38-84.lv.lv.cox.net)
- # [06:56] * Quits: mven (~textual@ip68-104-38-84.lv.lv.cox.net) (Max SendQ exceeded)
- # [06:57] * Joins: mven (~textual@ip68-104-38-84.lv.lv.cox.net)
- # [06:57] * Joins: arunranga (~otherarun@dsl-173-206-232-186.tor.primus.ca)
- # [06:58] * Quits: arunranga (~otherarun@dsl-173-206-232-186.tor.primus.ca) (Client Quit)
- # [07:09] * Quits: roc (~chatzilla@2001:cb0:b202:232:2677:3ff:fece:dc64) (Remote host closed the connection)
- # [07:18] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Remote host closed the connection)
- # [07:23] * Joins: hasather (~hasather@80.91.33.141)
- # [07:24] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [07:29] * Joins: zdobersek (~zan@109.201.152.225)
- # [07:31] * Joins: BigBangUDR (~Thunderbi@103.249.181.147)
- # [07:31] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 260 seconds)
- # [07:32] * Joins: caitp__ (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [07:34] * Quits: caitp- (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Ping timeout: 272 seconds)
- # [07:35] * Quits: caitp__ (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Read error: Connection reset by peer)
- # [07:35] * Joins: wakaba (~wakaba@146.225.100.220.dy.bbexcite.jp)
- # [07:36] * Joins: caitp__ (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [07:39] * Quits: scor (~scor@drupal.org/user/52142/view) (Quit: scor)
- # [07:41] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Remote host closed the connection)
- # [07:48] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [07:58] * Quits: caitp__ (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Ping timeout: 260 seconds)
- # [08:05] * Joins: arpitab__ (uid10516@gateway/web/irccloud.com/session)
- # [08:05] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Remote host closed the connection)
- # [08:26] * Quits: mven (~textual@ip68-104-38-84.lv.lv.cox.net) (Ping timeout: 258 seconds)
- # [08:27] * Joins: hasather (~hasather@80.91.33.141)
- # [08:28] * Quits: webben_ (~benjamin@hq.benjaminhawkeslewis.com) (Ping timeout: 258 seconds)
- # [08:28] * Joins: mven (~textual@ip68-104-38-84.lv.lv.cox.net)
- # [08:28] * Joins: webben_ (~benjamin@hq.benjaminhawkeslewis.com)
- # [08:28] * Quits: mven (~textual@ip68-104-38-84.lv.lv.cox.net) (Max SendQ exceeded)
- # [08:29] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [08:32] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 258 seconds)
- # [08:36] * Joins: davidyezsetz (~davidyezs@mail1.powerflasher.de)
- # [08:38] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Read error: Connection reset by peer)
- # [08:38] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [08:44] * Quits: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net) (Remote host closed the connection)
- # [08:44] <mathiasbynens> links are not the problem; it’s the embedded resources
- # [08:45] <mathiasbynens> <object> <img> etc.
- # [08:46] <Domenic> the links are problematic if we want to encourage SSL usage
- # [08:46] <mathiasbynens> ofc
- # [08:47] <mathiasbynens> ah, i’d missed the “and” in your message
- # [08:48] * Quits: Goplat (~goplat@reactos/developer/Goplat) (Remote host closed the connection)
- # [08:50] <mathiasbynens> also the redirects in `.htaccess` (e.g. `/C`) are still hardcoded to `http://`
- # [08:52] <mathiasbynens> a server-wide search/replace for http://*.whatwg.org/ → https://\1.whatwg.org/ would be nice
- # [08:59] * Joins: mpt (~mpt@canonical/mpt)
- # [09:01] * Joins: jacobolus (~jacobolus@70-36-196-50.dsl.static.sonic.net)
- # [09:02] * Joins: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch)
- # [09:04] * Joins: markkes (~markkes@62.207.90.201)
- # [09:08] * Joins: hasather (~hasather@80.91.33.141)
- # [09:20] * Joins: zcorpan (~zcorpan@94.234.170.187)
- # [09:21] * Joins: slmult0 (~ctlM@80.83.238.88)
- # [09:29] * Quits: zcorpan (~zcorpan@94.234.170.187) (Ping timeout: 258 seconds)
- # [09:35] * Joins: zcorpan (~zcorpan@94.234.170.173)
- # [09:47] * Joins: darobin (~darobin@78.109.80.74)
- # [09:48] * Quits: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch) (Quit: cbr_)
- # [09:49] * Joins: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch)
- # [09:55] * Quits: zcorpan (~zcorpan@94.234.170.173) (Ping timeout: 272 seconds)
- # [10:02] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [10:02] * Joins: annevk (~annevk@46-127-136-57.dynamic.hispeed.ch)
- # [10:02] * Joins: miketaylr (~miketaylr@192.241.222.35)
- # [10:02] * Quits: diffalot (~diffalot@c-75-66-188-195.hsd1.ms.comcast.net) (Read error: Connection reset by peer)
- # [10:06] * Quits: Domenic (sid10976@gateway/web/irccloud.com/session) (Ping timeout: 272 seconds)
- # [10:06] * Quits: markkes (~markkes@62.207.90.201) (Read error: Connection reset by peer)
- # [10:06] * Quits: cfq___ (sid18398@gateway/web/irccloud.com/x-fytwkswypqlzmqji) (Ping timeout: 272 seconds)
- # [10:06] * Quits: th2389____ (uid27360@gateway/web/irccloud.com/x-xoipjtyyabgyhegl) (Ping timeout: 272 seconds)
- # [10:07] * Joins: diffalot (~diffalot@c-75-66-188-195.hsd1.ms.comcast.net)
- # [10:07] * Quits: ato (sid16069@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: ato (sid16069@gateway/web/irccloud.com/x-vvtnagbavwyhlvlq)
- # [10:07] * Quits: mattur_ (sid16049@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: mattur_ (sid16049@gateway/web/irccloud.com/x-rrzbhxthiijoqxzb)
- # [10:07] * Quits: dfreedm (sid7859@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: dfreedm (sid7859@gateway/web/irccloud.com/x-jboelplgyvxjystm)
- # [10:07] * Quits: astearns (sid15080@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: astearns (sid15080@gateway/web/irccloud.com/x-thrvtlgghseugljq)
- # [10:07] * Quits: sspi______ (sid34681@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: sspi______ (sid34681@gateway/web/irccloud.com/x-umgaqnqerohnksvm)
- # [10:07] * Quits: JakeA (uid3836@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: JakeA (uid3836@gateway/web/irccloud.com/x-qzocolxgvysihkxe)
- # [10:07] * Quits: JonathanNeal (sid5831@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: JonathanNeal (sid5831@gateway/web/irccloud.com/x-woxrpewshjebpgba)
- # [10:07] * Quits: jevs_ (sid23814@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: jevs_ (sid23814@gateway/web/irccloud.com/x-vmhjzgwtqxtmnyyi)
- # [10:07] * Quits: phuu_ (sid7721@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: phuu_ (sid7721@gateway/web/irccloud.com/x-dxkhevfqtplreuhc)
- # [10:07] * Quits: Amaan (uid4967@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: Amaan (uid4967@gateway/web/irccloud.com/x-ztpckpqvwxissxlv)
- # [10:07] * Quits: hayato (sid20728@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: hayato (sid20728@gateway/web/irccloud.com/x-jwajeieawzxfaroq)
- # [10:07] * Quits: slightlyoff (sid1768@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: slightlyoff (sid1768@gateway/web/irccloud.com/x-hxgwfhnitudgkmmb)
- # [10:07] * Quits: wanderview (sid22777@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: wanderview (sid22777@gateway/web/irccloud.com/x-jwzuubgspkqpjbmb)
- # [10:07] * Quits: Guest32898 (uid21171@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: Guest32898 (uid21171@gateway/web/irccloud.com/x-dmixzmctcddwmebo)
- # [10:07] * Quits: parshap__ (sid18846@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: parshap__ (sid18846@gateway/web/irccloud.com/x-owyrubzrvesreqxe)
- # [10:07] * Quits: dmurph (sid42525@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: dmurph (sid42525@gateway/web/irccloud.com/x-qxtzlthupfpqsxvq)
- # [10:07] * Quits: kirjs_____ (sid25169@gateway/web/irccloud.com/session) (Changing host)
- # [10:07] * Joins: kirjs_____ (sid25169@gateway/web/irccloud.com/x-myzblnrejvefdxiz)
- # [10:08] * Joins: markkes (~markkes@62.207.90.201)
- # [10:08] * Joins: Domenic_ (sid10976@gateway/web/irccloud.com/session)
- # [10:08] * Joins: cfq___ (sid18398@gateway/web/irccloud.com/session)
- # [10:08] * Quits: arpitab__ (uid10516@gateway/web/irccloud.com/session) (Changing host)
- # [10:08] * Joins: arpitab__ (uid10516@gateway/web/irccloud.com/x-jeinghbnrvzeqsdo)
- # [10:08] * Quits: r4vi (~r4vi@184.106.109.213) (Excess Flood)
- # [10:09] * Joins: th2389____ (uid27360@gateway/web/irccloud.com/session)
- # [10:10] * Quits: Domenic_ (sid10976@gateway/web/irccloud.com/session) (Changing host)
- # [10:10] * Joins: Domenic_ (sid10976@gateway/web/irccloud.com/x-gsigyxpmpwqdaxtk)
- # [10:10] * Quits: cfq___ (sid18398@gateway/web/irccloud.com/session) (Changing host)
- # [10:10] * Joins: cfq___ (sid18398@gateway/web/irccloud.com/x-shxltsecukfebtqs)
- # [10:10] * Quits: th2389____ (uid27360@gateway/web/irccloud.com/session) (Changing host)
- # [10:10] * Joins: th2389____ (uid27360@gateway/web/irccloud.com/x-owjqpajkphdktmkg)
- # [10:10] * Joins: r4vi (~r4vi@184.106.109.213)
- # [10:11] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Remote host closed the connection)
- # [10:11] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [10:12] * Quits: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch) (Quit: cbr_)
- # [10:12] <MikeSmith> annevk: will fix the platform.html5.org image thing later today. (last day of vacation here in Berlin with Nao and the weather's beautiful so we're headed off to ride some bikes around a lake9
- # [10:13] * Joins: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch)
- # [10:16] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Ping timeout: 260 seconds)
- # [10:18] * Joins: zcorpan (~zcorpan@c-5eeaaaad-74736162.cust.telenor.se)
- # [10:18] * Joins: erlehmann (~erlehmann@g226041003.adsl.alicedsl.de)
- # [10:20] <annevk> MikeSmith: I just fixed it for you
- # [10:21] <annevk> I also updated all commit hooks on GitHub for my WHATWG domains to https:// and enabled HSTS
- # [10:22] * Quits: markkes (~markkes@62.207.90.201) (Read error: Connection reset by peer)
- # [10:24] * Joins: markkes (~markkes@62.207.90.201)
- # [10:24] <annevk> http://xkcd.com/1421/ :-)
- # [10:27] <zcorpan> is IndexSizeError in http://dev.w3.org/fxtf/geometry/#DOMMatrix et al right or wrong?
- # [10:30] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [10:31] * Guest32898 is now known as Garbee
- # [10:32] <annevk> The reference it uses for it is almost certainly wrong
- # [10:33] <annevk> But yeah https://dom.spec.whatwg.org/#indexsizeerror not sure
- # [10:36] <MikeSmith> annevk: ah ok -- thanks
- # [10:47] * Quits: Lachy_ (~Lachy@cm-84.215.104.248.getinternet.no) (Quit: My MacBook Pro has gone to sleep. ZZZzzz…)
- # [10:56] * Joins: Ducki (~Ducki@191.233.66.1)
- # [10:57] <annevk> https://blog.whatwg.org/rolling-out-tls-and-hsts
- # [10:59] <mathiasbynens> \o/
- # [11:04] * Quits: r4vi (~r4vi@184.106.109.213) (Remote host closed the connection)
- # [11:06] * Quits: slmult0 (~ctlM@80.83.238.88) (Read error: Connection reset by peer)
- # [11:07] * Joins: r4vi (~r4vi@184.106.109.213)
- # [11:09] <annevk> Guess I need to update my email signature
- # [11:18] * Joins: Lachy_ (~Lachy@213.166.174.2)
- # [11:22] * Quits: davidyezsetz (~davidyezs@mail1.powerflasher.de) (Quit: davidyezsetz)
- # [11:23] * Joins: davidyezsetz (~davidyezs@mail1.powerflasher.de)
- # [11:26] * Quits: zcorpan (~zcorpan@c-5eeaaaad-74736162.cust.telenor.se) (Ping timeout: 260 seconds)
- # [11:36] <annevk> Security incentives are all wrong. Why is https a character longer?
- # [11:38] * Joins: roc (~chatzilla@121-99-141-164.bng1.tvc.orcon.net.nz)
- # [11:40] * Quits: boogyman (~boogyman@pdpc/supporter/professional/boogyman) (Ping timeout: 246 seconds)
- # [11:40] <annevk> hsivonen: the Mozilla IETF crowd is scary. Cameras without TLS? How can that be something we aim for?
- # [11:41] * Joins: zcorpan (~zcorpan@94.234.170.208)
- # [11:42] * Quits: Lachy_ (~Lachy@213.166.174.2) (Read error: Connection reset by peer)
- # [11:42] * Joins: Lachy (~Lachy@213.166.174.2)
- # [11:44] <annevk> http://www.android.com/one/ "Always the latest software" such an odd marketing message coming from Google
- # [11:45] * Quits: zcorpan (~zcorpan@94.234.170.208) (Ping timeout: 246 seconds)
- # [11:49] <annevk> By the way, if anyone in this channel wants to setup TLS, I'm willing to help out
- # [11:53] * Joins: zcorpan (~zcorpan@c-5eeaaad0-74736162.cust.telenor.se)
- # [11:55] * Quits: sarri (~sari@p50995cae.dip0.t-ipconnect.de) (Ping timeout: 246 seconds)
- # [11:57] * Joins: sarri (~sari@p50995cae.dip0.t-ipconnect.de)
- # [11:59] * Quits: Lachy (~Lachy@213.166.174.2) (Quit: My MacBook Pro has gone to sleep. ZZZzzz…)
- # [12:06] * Joins: smaug____ (~chatzilla@cs78246079.pp.htv.fi)
- # [12:08] <hsivonen> annevk: is it expected that webm.html5.org has changed its ssh host key in the last year or so?
- # [12:08] <hsivonen> annevk: it says the current fingerprint is 68:36:d3:fa:a4:40:ae:1a:ae:38:b7:3a:83:34:8f:74
- # [12:11] <hsivonen> annevk: you need to ask Ivan Ristić why ssllabs doesn't make more noise about RC4
- # [12:11] <hsivonen> annevk: it does show IE11 on Windows 8.1 as failing to connect, though, if a site is RC4-only
- # [12:12] <hsivonen> annevk: which should look pretty bad
- # [12:12] <hsivonen> (though it only simulates IE's first handshake attempt, so after downgrading, IE connects)
- # [12:13] * Quits: zcorpan (~zcorpan@c-5eeaaad0-74736162.cust.telenor.se) (Ping timeout: 272 seconds)
- # [12:15] <hsivonen> Hixie: OK. I'll file a bug about the fragment parsing algorithm and non-HTML/SVG/MathML context
- # [12:20] * Joins: Lachy_ (~Lachy@213.166.174.2)
- # [12:22] * Joins: markkes2 (~markkes@62.207.90.201)
- # [12:23] * Quits: markkes (~markkes@62.207.90.201) (Ping timeout: 258 seconds)
- # [12:25] * Quits: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch) (Quit: cbr_)
- # [12:25] * Joins: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch)
- # [12:27] <annevk> hsivonen: http://wiki.dreamhost.com/Security_Maintenance_%28SSH_Key_Change_and_Fixes%29
- # [12:29] <annevk> I just had a thought. What if the better your TLS story was, the less UI clutter a browser would show. And the worse it was, the more it would look like something is wrong.
- # [12:29] <annevk> Compare the address bar UI for https://www.dreamhost.com/ with http://www.dreamhost.com/
- # [12:30] <annevk> The TLS UI seems more cluttered for the user while it should be more obvious
- # [12:33] * Joins: espadrine (~ttyl@LMontsouris-656-01-02-84.w80-12.abo.wanadoo.fr)
- # [12:34] <roc> I just though "what if, the better your TLS story was, the less ads the browser would show"
- # [12:34] <roc> and then I realized Comcast is already implementing that.
- # [12:35] <espadrine> because of injected ads?
- # [12:35] <roc> yeah
- # [12:35] <jgraham> heh
- # [12:35] <annevk> roc: hehe
- # [12:35] <jgraham> Given the density of ads on the internet in general I'm not sure it's possible to tell the difference :(
- # [12:36] <annevk> But I don't get why we'd show "https://" for TLS. No normal user is going to get that and it actually looks more confusing than the alternative
- # [12:36] <annevk> Safari on the iPhone doesn't do it...
- # [12:38] <jgraham> At this point it probably isn't viable to make the internet look broken for http
- # [12:39] <annevk> We could remove "https://" as a start
- # [12:39] <annevk> We could change the globe with an icon that indicates surveillance
- # [12:41] <jgraham> "look for https" might be one of the few things that people know
- # [12:41] <jgraham> Of course they would probably be confused by https.evilsite.com
- # [12:43] <annevk> https://bugzilla.mozilla.org/show_bug.cgi?id=1067293
- # [12:43] <jgraham> But yeah, I guess "[insecure] site.tld" might work
- # [12:46] * Joins: jensnockert_ (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [12:47] * Joins: xiinotulp (~plutoniix@node-10et.pool-180-180.dynamic.totbb.net)
- # [12:49] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Ping timeout: 258 seconds)
- # [12:50] * Quits: plutoniix (~plutoniix@node-4fw.pool-125-25.dynamic.totbb.net) (Ping timeout: 245 seconds)
- # [12:50] * Joins: paulohp (~paulohp@201.52.249.159)
- # [12:50] <annevk> hsivonen: it seems Ivan is on Twitter, he just retweeted Mike West who was challenging the W3C to follow the WHATWG in using TLS
- # [12:51] <annevk> hsivonen: guess I might ask him about it later and maybe once more complain to DreamHost about RC4 and IE11
- # [12:51] * Quits: jensnockert_ (~jensnocke@s83-179-51-171.cust.tele2.se) (Remote host closed the connection)
- # [12:52] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [12:56] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Ping timeout: 245 seconds)
- # [13:04] * xiinotulp is now known as plutoniix
- # [13:07] * Quits: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch) (Quit: cbr_)
- # [13:08] * Joins: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch)
- # [13:10] * Quits: cbr_ (~cbr@145.36.150.83.chzhher77.rootnet.ch) (Client Quit)
- # [13:18] <jgraham> annevk: So how far are we from having html.spec.whatwg.org work?
- # [13:18] <jgraham> By which I mean "not be a redirect"
- # [13:18] * Joins: lerc (~quassel@121-74-5-229.telstraclear.net)
- # [13:18] <annevk> jgraham: I think Hixie would like it to remain a redirect
- # [13:19] <annevk> Hixie: are you planning on updating the certificate for www.whatwg.org as well?
- # [13:19] <jgraham> I would like to voice my disapproval at this
- # [13:19] <annevk> Hixie: also, will you make HSTS work or can you add my public key so I can do it?
- # [13:19] * Quits: Lachy_ (~Lachy@213.166.174.2) (Quit: My MacBook Pro has gone to sleep. ZZZzzz…)
- # [13:19] <annevk> jgraham: perhaps file a bug on the spec?
- # [13:19] <jgraham> A naming scheme with [spec].whatwg.org I can get behind
- # [13:20] <jgraham> Uh
- # [13:20] <jgraham> [name].spec.whatwg.org
- # [13:20] <jgraham> One that requires me to remember anything else, not so much
- # [13:20] <jgraham> (particularly the difference between c and C)
- # [13:25] <hsivonen> annevk: hmm. weird. webm.html5.org doesn't seem to know my ssh public key. I'm pretty sure I authorized my RSA key there when I migrated away from DSA.
- # [13:26] <annevk> hsivonen: do you want me to generate a fresh password?
- # [13:26] <hsivonen> annevk: yes, that would work, too
- # [13:26] <annevk> see pm
- # [13:28] * Joins: scor (~scor@c-24-2-162-32.hsd1.ma.comcast.net)
- # [13:28] * Quits: scor (~scor@c-24-2-162-32.hsd1.ma.comcast.net) (Changing host)
- # [13:28] * Joins: scor (~scor@drupal.org/user/52142/view)
- # [13:29] <hsivonen> annevk: note that banks, etc., pay premium for UI clutter: EV
- # [13:30] <hsivonen> annevk: so giving https sites less UI clutter might not be the winning strategy
- # [13:30] <annevk> hsivonen: I was thinking that once it gains acceptance that we don't show the path by default
- # [13:30] * Quits: BigBangUDR (~Thunderbi@103.249.181.147) (Read error: Connection reset by peer)
- # [13:30] <hsivonen> annevk: you may be interested in https://bugzilla.mozilla.org/show_bug.cgi?id=942136
- # [13:30] <annevk> hsivonen: EV might not show the domain by default
- # [13:31] <hsivonen> annevk: it would be pretty bad. you couldn't tell the difference between bugzilla.mozilla.org and www.mozilla.org then
- # [13:31] <annevk> oh ew
- # [13:32] <annevk> I'm not even sure why we decided to pay for EV, but yes, overall that would be an issue
- # [13:33] <hsivonen> annevk: of the browser vendors, Mozilla made a big deal of pushing EV back when it launched
- # [13:34] <annevk> :(
- # [13:35] <jgraham> Not showing the path by default is what Opera 12 did. Not sure it worked that wekk
- # [13:35] <jgraham> *well
- # [13:36] * Quits: davidyezsetz (~davidyezs@mail1.powerflasher.de) (Quit: davidyezsetz)
- # [13:38] * Quits: hsivonen (~hsivonen@bugzilla.validator.nu) (Changing host)
- # [13:38] * Joins: hsivonen (~hsivonen@fsf/member/hsivonen)
- # [13:43] * hsivonen notices that StartSSL has decided to capitalize "Van"
- # [13:46] <hsivonen> annevk: HSTS enabled for webm.html5.org
- # [13:49] * Joins: Lachy_ (~Lachy@213.166.174.2)
- # [13:57] * Joins: cheron (~cheron@unaffiliated/cheron)
- # [14:03] * Quits: Lachy_ (~Lachy@213.166.174.2) (Ping timeout: 272 seconds)
- # [14:04] * Joins: Lachy_ (~Lachy@213.166.174.2)
- # [14:05] * Quits: smaug____ (~chatzilla@cs78246079.pp.htv.fi) (Ping timeout: 255 seconds)
- # [14:08] * Joins: Kolombiken (~Adium@94.137.124.2)
- # [14:09] * Joins: davidyezsetz (~davidyezs@mail1.powerflasher.de)
- # [14:09] * Joins: BigBangUDR (~Thunderbi@103.249.181.147)
- # [14:11] <hsivonen> jgraham: do I need to take some action on https://critic.hoppipolla.co.uk/r/2564 ?
- # [14:15] * Quits: mpt (~mpt@canonical/mpt) (Quit: Ex-Chat)
- # [14:16] * Quits: scor (~scor@drupal.org/user/52142/view) (Quit: scor)
- # [14:18] * Joins: scor (~scor@drupal.org/user/52142/view)
- # [14:18] * Joins: zcorpan (~zcorpan@2a00:801:e0:30:71ba:6d75:8431:155c)
- # [14:21] * Joins: mpt (~mpt@nat/canonical/x-efoiibjmjuudxkub)
- # [14:21] * Quits: mpt (~mpt@nat/canonical/x-efoiibjmjuudxkub) (Remote host closed the connection)
- # [14:22] * Joins: mpt_ (~mpt@canonical/mpt)
- # [14:22] * mpt_ is now known as mpt
- # [14:22] * Quits: CvP (~CvP@27.147.199.131) (Ping timeout: 250 seconds)
- # [14:23] * Joins: CvP (~CvP@27.147.199.131)
- # [14:29] * Quits: lerc (~quassel@121-74-5-229.telstraclear.net) (Ping timeout: 250 seconds)
- # [14:29] * Joins: barnabywalters (~barnabywa@46-239-239-203.tal.is)
- # [14:30] * Joins: tj_vantoll (~Adium@2601:4:5380:2ec:209b:d701:1a4a:ae8f)
- # [14:34] <jgraham> hsivonen: No, you just need someone to review it. I guess I should be that someone. I'll have a look once I fix up Ms2ger's issues with the testtwf documentation
- # [14:35] * Joins: polarbearBalls (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com)
- # [14:37] <hsivonen> jgraham: OK. Thanks. I requested your review of the same .dat file over at bugzilla.mozilla.org, too.
- # [14:39] * Quits: polarbearBalls (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com) (Ping timeout: 255 seconds)
- # [14:46] * Joins: nessy (~silviapf@101.164.214.231)
- # [14:50] * Quits: nessy (~silviapf@101.164.214.231) (Client Quit)
- # [14:53] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [14:57] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Read error: Connection reset by peer)
- # [14:57] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [15:08] * Joins: yoav (~yoav@208.184.147.3)
- # [15:09] * Quits: tj_vantoll (~Adium@2601:4:5380:2ec:209b:d701:1a4a:ae8f) (Read error: Connection reset by peer)
- # [15:09] * Joins: guybedford (~guybedfor@41-133-249-7.dsl.mweb.co.za)
- # [15:09] * Quits: BigBangUDR (~Thunderbi@103.249.181.147) (Quit: BigBangUDR)
- # [15:12] * Joins: tj_vantoll (~Adium@c-98-250-130-237.hsd1.mi.comcast.net)
- # [15:13] * Quits: davidyezsetz (~davidyezs@mail1.powerflasher.de) (Quit: davidyezsetz)
- # [15:20] * Joins: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [15:27] * Quits: ndkrempel (ndkrempel@nat/google/x-nccugxynphtedbbe) (Remote host closed the connection)
- # [15:29] * Joins: smaug____ (~chatzilla@cs78246079.pp.htv.fi)
- # [15:31] * Joins: boogyman (~boogyman@38.88.11.131)
- # [15:31] * Quits: boogyman (~boogyman@38.88.11.131) (Changing host)
- # [15:31] * Joins: boogyman (~boogyman@pdpc/supporter/professional/boogyman)
- # [15:31] * Joins: paulohp_ (~paulohp@201.52.249.159)
- # [15:32] * Quits: kriskowal (~kriskowal@c-50-161-112-245.hsd1.ca.comcast.net) (Quit: kriskowal)
- # [15:33] * Quits: paulohp (~paulohp@201.52.249.159) (Read error: Connection reset by peer)
- # [15:34] * Joins: TallTed (~Thud@63.119.36.36)
- # [15:35] * Joins: davidyezsetz (~davidyezs@mail1.powerflasher.de)
- # [15:41] * Quits: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [15:42] * Joins: BigBangUDR (~Thunderbi@115.247.227.25)
- # [15:49] * Joins: ehsan (~ehsan@66.207.208.102)
- # [15:50] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [15:51] * Quits: Kolombiken (~Adium@94.137.124.2) (Ping timeout: 246 seconds)
- # [15:52] * Joins: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [15:52] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 272 seconds)
- # [15:55] <annevk> hsivonen: ta
- # [15:59] <annevk> hsivonen: your bug report seems interesting, though I think making TLS UI as attractive as non-TLS should be higher priority
- # [16:00] <annevk> hsivonen: also, the amount of issues you mention with EV :-(
- # [16:00] <annevk> hsivonen: we should definitely do some kind of cert persistence and perhaps scope cookies / storage etc.
- # [16:06] * Joins: encryptd_fractl (~encryptd_@71-90-29-214.dhcp.ftbg.wi.charter.com)
- # [16:09] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Read error: Connection reset by peer)
- # [16:09] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [16:10] * Joins: Kolombiken (~Adium@gateway.creuna.se)
- # [16:13] * Quits: plutoniix (~plutoniix@node-10et.pool-180-180.dynamic.totbb.net) (Quit: จรลี จรลา)
- # [16:13] * Joins: yoav (~yoav@208.184.147.3)
- # [16:18] * Joins: plutoniix (~plutoniix@node-10et.pool-180-180.dynamic.totbb.net)
- # [16:25] * Quits: jahman (~woops@129.175.204.73) (Remote host closed the connection)
- # [16:28] * Joins: jahman (~woops@129.175.204.73)
- # [16:30] * Quits: jahman (~woops@129.175.204.73) (Remote host closed the connection)
- # [16:33] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Read error: Connection reset by peer)
- # [16:34] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 246 seconds)
- # [16:34] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [16:40] * timeless_ is now known as timeless
- # [16:41] * Quits: timeless (sid4015@gateway/web/irccloud.com/x-sqbsukecmrcgftgl) (Changing host)
- # [16:41] * Joins: timeless (sid4015@firefox/developer/timeless)
- # [16:47] * Joins: jahman (~woops@129.175.204.73)
- # [16:55] * Quits: erlehmann (~erlehmann@g226041003.adsl.alicedsl.de) (Remote host closed the connection)
- # [16:55] * Joins: erlehmann (~erlehmann@g226041003.adsl.alicedsl.de)
- # [16:59] <jgraham> hsivonen: Critic review is done
- # [16:59] <mathiasbynens> woo, annevk.nl is now on TLS too
- # [17:00] <jgraham> One issue that I think you should fix, when that's done push a new commit (just the changes, don't try to squash history or anything) and it will appear on critic and I can review it
- # [17:00] <jgraham> Then assuming that's OK I'll merg
- # [17:00] <jgraham> e
- # [17:00] <annevk> The main problem with annevk.nl is that I've configured it as a redirect. I think I'd actually need to fully host the domain to give it a proper setup. Same for www.annevankesteren.nl which automatically redirects, but does not automatically redirect to TLS version afaict.
- # [17:01] <annevk> DreamHost needs HSTS support as an option. That would make all of that work automatically I think.
- # [17:01] <annevk> Well, if they implemented it correctly.
- # [17:04] * Quits: davidyezsetz (~davidyezs@mail1.powerflasher.de) (Quit: davidyezsetz)
- # [17:05] * Joins: dbaron__ (~dbaron@50.0.192.112)
- # [17:06] * Quits: mpt (~mpt@canonical/mpt) (Ping timeout: 272 seconds)
- # [17:08] * Joins: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [17:10] * Quits: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Ping timeout: 245 seconds)
- # [17:10] * Joins: kriskowal (~kriskowal@8.26.157.224)
- # [17:17] * Joins: marcosc (~marcosc@135-23-143-163.cpe.pppoe.ca)
- # [17:17] * Quits: kriskowal (~kriskowal@8.26.157.224) (Ping timeout: 250 seconds)
- # [17:17] * Joins: mpt (~mpt@nat/canonical/x-lbhxeyoaoxoznzqf)
- # [17:18] * Quits: mpt (~mpt@nat/canonical/x-lbhxeyoaoxoznzqf) (Changing host)
- # [17:18] * Joins: mpt (~mpt@canonical/mpt)
- # [17:23] * Joins: jernoble|laptop (~jernoble@76.74.153.49)
- # [17:23] * Quits: BigBangUDR (~Thunderbi@115.247.227.25) (Quit: BigBangUDR)
- # [17:23] * Quits: halfline (rstrode@nat/redhat/x-fdvlooqdokysbrbo) (Remote host closed the connection)
- # [17:27] * Quits: jernoble|laptop (~jernoble@76.74.153.49) (Ping timeout: 258 seconds)
- # [17:28] * Joins: halfline (rstrode@nat/redhat/x-kqjbftotvdfmgatv)
- # [17:29] * Joins: jernoble|laptop (~jernoble@76.74.153.49)
- # [17:36] * Joins: tantek (~tantek@70-36-139-41.dsl.dynamic.sonic.net)
- # [17:36] * Joins: tantek-ipod (~tantek@70-36-139-41.dsl.dynamic.sonic.net)
- # [17:38] * Quits: tantek-ipod (~tantek@70-36-139-41.dsl.dynamic.sonic.net) (Client Quit)
- # [17:39] * Quits: eric_carlson (~eric@17.202.43.125) (Remote host closed the connection)
- # [17:42] * Quits: zcorpan (~zcorpan@2a00:801:e0:30:71ba:6d75:8431:155c) (Remote host closed the connection)
- # [17:42] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Remote host closed the connection)
- # [17:43] * Joins: lmclister (~lmclister@192.150.10.204)
- # [17:43] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [17:45] * Joins: say2joe (~say2joe@rrcs-76-79-68-2.west.biz.rr.com)
- # [17:46] * Joins: eric_carlson (~eric@17.202.43.125)
- # [17:48] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Ping timeout: 272 seconds)
- # [17:48] * Joins: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se)
- # [17:50] * Quits: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [17:51] * Joins: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [17:52] * Joins: svl (~me@ip565744a7.direct-adsl.nl)
- # [17:58] * Joins: tommyliu (~tommyliu@113.104.212.38)
- # [17:58] * Quits: tommyliu (~tommyliu@113.104.212.38) (Remote host closed the connection)
- # [17:58] * Joins: tommyliu (~tommyliu@113.104.212.38)
- # [18:00] * Joins: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [18:00] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [18:03] * Quits: jernoble|laptop (~jernoble@76.74.153.49) (Ping timeout: 255 seconds)
- # [18:03] * Quits: tommyliu (~tommyliu@113.104.212.38) (Quit: brb)
- # [18:05] * Joins: jernoble|laptop (~jernoble@76.74.153.49)
- # [18:06] * Quits: Kolombiken (~Adium@gateway.creuna.se) (Quit: Leaving.)
- # [18:06] * Quits: jensnockert (~jensnocke@s83-179-51-171.cust.tele2.se) (Remote host closed the connection)
- # [18:07] * Joins: lmclister (~lmclister@192.150.10.204)
- # [18:09] * whatitdo is now known as howitdo
- # [18:15] <annevk> hsivonen: https://twitter.com/ivanristic/status/511545125621993472
- # [18:16] * Quits: hasather (~hasather@80.91.33.141) (Remote host closed the connection)
- # [18:16] * Joins: hasather (~hasather@80.91.33.141)
- # [18:17] * Joins: Maurice (copyman@unaffiliated/maurice)
- # [18:18] * Joins: ap (~ap@17.202.44.214)
- # [18:19] * Quits: paulohp_ (~paulohp@201.52.249.159) (Remote host closed the connection)
- # [18:19] * Quits: malcolmva (~malcolmva@c-67-180-198-144.hsd1.ca.comcast.net) (Ping timeout: 245 seconds)
- # [18:20] * Joins: paulohp (~paulohp@201.52.249.159)
- # [18:21] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 246 seconds)
- # [18:22] * Quits: barnabywalters (~barnabywa@46-239-239-203.tal.is) (Quit: barnabywalters)
- # [18:23] * Quits: Lachy_ (~Lachy@213.166.174.2) (Quit: My MacBook Pro has gone to sleep. ZZZzzz…)
- # [18:25] * Quits: paulohp (~paulohp@201.52.249.159) (Ping timeout: 272 seconds)
- # [18:25] * Quits: ap (~ap@17.202.44.214)
- # [18:25] <JakeA> annevk: Can we add Reponse as an alias to Response? I always type it wrong
- # [18:29] * Quits: jernoble|laptop (~jernoble@76.74.153.49) (Quit: Computer has gone to sleep.)
- # [18:30] * Joins: ap (~ap@17.202.44.214)
- # [18:30] <Hixie> jgraham: what would html.spec.whatwg.org host? the multipage spec or the single-page spec? and where would the other go?
- # [18:30] * Quits: bnicholson (~bnicholso@24.130.60.241) (Ping timeout: 250 seconds)
- # [18:31] <Hixie> jgraham: also, there's a lot of links to the old location
- # [18:31] <gsnedders> hsivonen: are you ever actually obliged to revoke a cert? could you just take the attitude that it started out as HTTP so it's no more insecure than how it started out (obviously false sense of security, but…)
- # [18:32] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Remote host closed the connection)
- # [18:33] <jgraham> Hixie: Single page. Multipage would be under some path or a seperate subdomain. The old location could redirect
- # [18:33] * Joins: malcolmva (~malcolmva@c-67-180-198-144.hsd1.ca.comcast.net)
- # [18:34] <Hixie> what's the impact of the old location redirecting on things like position in search results?
- # [18:34] * Joins: ShaneHudson (~ShaneHuds@host86-149-123-177.range86-149.btcentralplus.com)
- # [18:34] <Hixie> i guess the domain name having "html" in it might make it a net positive...
- # [18:34] <jgraham> Dunno, ask someone that works for Google
- # [18:34] * Quits: Philip` (~philip@compass.zaynar.co.uk) (Ping timeout: 240 seconds)
- # [18:34] <Hixie> well not just in google
- # [18:35] <Hixie> i'm pretty sure the impact with google is google shunts the page rank along the redirect
- # [18:35] * Joins: Philip` (~philip@compass.zaynar.co.uk)
- # [18:36] <jgraham> I think the net win of going form "url no one can remember" to "url anyone can remember" is big enough that I would be prepared to take a temporary hit in search engine ranking
- # [18:37] <Hixie> fair enough
- # [18:43] <Hixie> what's the magic i need for HSTS again?
- # [18:44] * Quits: darobin (~darobin@78.109.80.74) (Remote host closed the connection)
- # [18:45] <Hixie> oh you only send it over HTTPS?
- # [18:45] * Joins: darobin (~darobin@78.109.80.74)
- # [18:45] * Quits: darobin (~darobin@78.109.80.74) (Remote host closed the connection)
- # [18:45] <Hixie> that makes it easier
- # [18:45] * Hixie sticks this in his global htaccess file: Header set Strict-Transport-Security "max-age=31536000" env=HTTPS
- # [18:45] * Joins: darobin (~darobin@78.109.80.74)
- # [18:47] * Joins: jsbell (jsbell@nat/google/x-jtsphfslazxsvkam)
- # [18:47] * Joins: ambv (~ambv@206.108.217.134)
- # [18:50] * Quits: darobin (~darobin@78.109.80.74) (Ping timeout: 245 seconds)
- # [18:50] * Quits: ambv (~ambv@206.108.217.134) (Read error: Connection reset by peer)
- # [18:50] * Joins: ambv (~ambv@206.108.217.134)
- # [18:54] * jorendorff__ is now known as jorendorff
- # [18:55] * Joins: Lachy (~Lachy@cm-84.215.104.248.getinternet.no)
- # [18:55] * Krinkle|detached is now known as Krinkle
- # [18:57] * Joins: bnicholson (~bnicholso@2620:101:80fc:224:8517:d573:db3b:4a82)
- # [19:03] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [19:04] <annevk> JakeA: haha
- # [19:04] * Joins: yoav (~yoav@208.184.147.3)
- # [19:04] <annevk> Hixie: you also need a redirect from non-TLS
- # [19:05] <annevk> Hixie: https://gist.github.com/annevk/3ec0c4cc129059eb567d
- # [19:05] <Hixie> the redirects are going in already
- # [19:05] <annevk> Hixie: not sure how you can make that work globally
- # [19:05] <annevk> okay
- # [19:05] * Quits: smaug____ (~chatzilla@cs78246079.pp.htv.fi) (Ping timeout: 272 seconds)
- # [19:06] * Quits: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [19:06] <jsbell> annevk: Any idea if/when FF will implement set/get/getAll/has/delete on FormData?
- # [19:07] <annevk> jsbell: I don't, I'm not even aware of a bug
- # [19:08] <jsbell> annevk: thx. I couldn't find a moz bug either.
- # [19:09] * Quits: espadrine (~ttyl@LMontsouris-656-01-02-84.w80-12.abo.wanadoo.fr) (Ping timeout: 272 seconds)
- # [19:10] <Hixie> ok the www.whatwg.org home page is no longer mixed content
- # [19:10] <Hixie> let me know if there's other affected pages
- # [19:10] <annevk> Hixie++
- # [19:11] <annevk> Hixie: home page is not yet redirecting to https:// btw
- # [19:11] <Hixie> yeah i wanted to fix the mixed content issues first :-)
- # [19:11] * Joins: paulohp (~paulohp@201.52.249.159)
- # [19:11] <Hixie> are the forums ready to redirect? zcorpan is having trouble logging in but we're not ever up at the same time so i haven't been able to help troubleshoot
- # [19:11] * Quits: ShaneHudson (~ShaneHuds@host86-149-123-177.range86-149.btcentralplus.com) (Quit: Computer fell asleep.)
- # [19:12] <Hixie> anyone seen variable recently? (aka eitana)
- # [19:13] <Hixie> looks like he hasn't logged in since 2010
- # [19:13] <annevk> I don't know my Forums account anymore
- # [19:13] <Hixie> i'm calling that abandoned and deleting history.whatwg.org
- # [19:15] <Hixie> what's the story on html-differences.whatwg.org ?
- # [19:15] <annevk> maintained by zcorpan
- # [19:16] <Hixie> looks like it's having styling issues
- # [19:16] <annevk> I can fix the issues I guess
- # [19:16] <Hixie> oh it's mixed content issues i guess
- # [19:16] <annevk> yes
- # [19:16] <Hixie> anyway, i should be keeping this domain then right
- # [19:17] <Hixie> btw once i'm done here you should be able to remove your redirect thing
- # [19:17] <Hixie> the http sites are just going to not exist any more
- # [19:17] * Joins: jwalden (~waldo@2620:101:80fc:224:7e7a:91ff:fe25:a5a3)
- # [19:17] <Hixie> well, they'll exist in that they'll be hardcoded to redirect at the panel level
- # [19:17] <Hixie> but your .htaccess files won't be doing anything with them
- # [19:17] <Hixie> so they'll just be slowing down the https loads
- # [19:18] <Hixie> MikeSmith: what's the story on help.whatwg.org?
- # [19:19] * jevs_ is now known as jevs
- # [19:20] <Hixie> ooh
- # [19:20] <Hixie> http://n.whatwg.org/
- # [19:20] <Hixie> i guess i will _not_ in fact support https://n.whatwg.org/
- # [19:20] <Hixie> since that would just cause confusions
- # [19:21] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [19:22] * Joins: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [19:23] <annevk> ooh, you have some kind of super powers even over the domains I host?
- # [19:23] * Joins: lmclister (~lmclister@192.150.10.204)
- # [19:23] <annevk> that sounds great
- # [19:23] <annevk> I guess it doesn't apply to dom.spec.whatwg.org yet, hopefully DreamHost can move that back as I requested
- # [19:24] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Ping timeout: 258 seconds)
- # [19:24] <Hixie> well, i have the power to make you not host them :-)
- # [19:24] <boogyman> annevk: the primary owner of the acct has full access to all namespaces
- # [19:24] <annevk> boogyman: except for dom.spec.whatwg.org at the moment
- # [19:25] <annevk> I think, as that's a really weird hack
- # [19:25] <boogyman> whoever owns "whatwg.org" does
- # [19:26] <Hixie> boogyman: he means control over how it's hosted at dreamhost
- # [19:26] <Hixie> obviously i could move the entire domain elsewhere
- # [19:26] <Hixie> that would be a hell of a mess
- # [19:26] <Hixie> :-)
- # [19:27] <boogyman> Unless this is something new in their system, I am pretty sure you can change the location of the host between their hosted solutions.
- # [19:29] <annevk> I fixed html-differences
- # [19:29] <annevk> I guess I'll remove the HSTS stuff I did
- # [19:30] <Hixie> leave the header
- # [19:30] <Hixie> i can't affect your domains' headers with my .htaccess files
- # [19:32] <annevk> okay
- # [19:32] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 246 seconds)
- # [19:33] <Hixie> in setting up these redirects i'm sure i'm gonna get one wrong
- # [19:33] <Hixie> and we'll have http://figures.spec.whatwg.org redirect to https://fetch.spec.whatwg.org or some nonsense
- # [19:33] <annevk> are they all in one file?
- # [19:34] * Quits: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Ping timeout: 255 seconds)
- # [19:34] <Hixie> it's the web panel interface
- # [19:34] * Joins: yoav (~yoav@208.184.147.3)
- # [19:34] <annevk> your panel has separate controls for :80 and :443?
- # [19:34] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [19:34] <Hixie> yeah
- # [19:35] <annevk> neat
- # [19:35] * Joins: lmclister (~lmclister@192.150.10.204)
- # [19:35] <annevk> ooh I see, I do too
- # [19:35] <annevk> I did not realize that when you add secure hosting, it's basically the same thing as web hosting
- # [19:36] <annevk> I thought it was just a way to add certificates
- # [19:37] <Hixie> something wacky is going on with my html.spec.whatwg.org setup
- # [19:38] <Hixie> oh, local caching problem
- # [19:38] <Hixie> ok
- # [19:38] * parshap__ is now known as parshap
- # [19:39] <annevk> oh man, that separate hosting thingy is exciting, I'm going to use that too
- # [19:39] <annevk> and update my blog post draft to not put blame on DreamHost for this
- # [19:40] * Quits: cheron (~cheron@unaffiliated/cheron) (Ping timeout: 260 seconds)
- # [19:40] <Hixie> heh
- # [19:40] <Hixie> what were you blaming dreamhost for? not being able to control them separately?
- # [19:41] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [19:41] <Hixie> oh yikes
- # [19:41] <Hixie> don't forget the trailing /
- # [19:42] * Hixie breaks whatwg.org
- # [19:47] * Joins: lmclister (~lmclister@192.150.10.204)
- # [19:50] * sspi______ is now known as sspi
- # [19:52] <annevk> That www.* would redirect to * first before redirecting to TLS. I also blamed them for not having HSTS support as a configuration, which still seems fair
- # [19:58] <Hixie> well it's trivial to add headers to all your sites
- # [19:58] <Hixie> i mean, you put one line in one file and you're done for all your sites
- # [20:00] <Hixie> ok so now i need secure icons for the browsers
- # [20:00] <Hixie> i'm tempted to just drop the stuff that says which browser implements what
- # [20:00] <Hixie> is there some better solution we can roll out?
- # [20:00] <Hixie> based on caniuse or something?
- # [20:00] <annevk> Hixie: html5.org has secure icons
- # [20:01] <annevk> Hixie: see https://html5.org/tools/web-apps-tracker
- # [20:01] * Joins: hasather (~hasather@80.91.33.141)
- # [20:01] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [20:01] <annevk> Although I think the preferred term is authenticated, since we don't know whether html5.org is actually secure
- # [20:04] <Hixie> i guess
- # [20:04] <annevk> Hixie: still failing basic checks on https://hstspreload.appspot.com/
- # [20:04] <annevk> Hixie: seems hard
- # [20:04] * TabAtkins_ is now known as TabAtkins
- # [20:05] <annevk> in particular they require the redirect to carry the HSTS header
- # [20:05] <Hixie> hstspreload.appspot.com is dumb. i tell it to check whatwg.org and it says i can't because it's a redirect. i tell it to check www.whatwg.org and it says i can't because it's a subdomain.
- # [20:06] <Hixie> oh well wait
- # [20:06] <Hixie> we don't want to be in that list
- # [20:06] <Hixie> not everything in whatwg.org is going to be HTTPS
- # [20:06] <Hixie> for example, n.whatwg.org
- # [20:06] * Joins: lmclister (~lmclister@192.150.10.204)
- # [20:09] * Joins: fila (~filaf@46.19.230.5)
- # [20:10] * Joins: KevinMarks (~yaaic@2607:fb90:1008:8e2c:1e72:293d:c270:41c7)
- # [20:10] <TabAtkins> Domenic_: I'm not sure I understand why you want ecmarkdown to mark all OL bullets with the same number. I cant' find any reasoning behind it in the issues list for ecmarkup.
- # [20:10] * Quits: tantek (~tantek@70-36-139-41.dsl.dynamic.sonic.net) (Quit: tantek)
- # [20:10] <annevk> Hixie: the problem with not everything being HTTPS is that then users can be spoofed
- # [20:10] * Joins: smaug____ (~chatzilla@cs78246079.pp.htv.fi)
- # [20:10] <Hixie> annevk: how?
- # [20:10] <annevk> Hixie: it seems better to simply explain this on n.whatwg.org as a naming problem
- # [20:11] <annevk> Hixie: e.g. an attacker could make them visit secure.whatwg.org and present some login form
- # [20:11] <Hixie> login form to what?
- # [20:11] * Joins: slmult0 (~ctlM@80.83.239.72)
- # [20:11] <annevk> Hixie: blog or wiki or forums
- # [20:11] * Joins: jernoble|laptop (~jernoble@17.202.45.163)
- # [20:11] <annevk> Hixie: the includeSubdomain directive is there to prevent this problem
- # [20:11] * Quits: marcosc (~marcosc@135-23-143-163.cpe.pppoe.ca) (Remote host closed the connection)
- # [20:12] <Hixie> the blog and wiki and forums are open to everyone anyway
- # [20:12] <Hixie> they need but ask
- # [20:12] * Joins: marcosc (~marcosc@135-23-143-163.cpe.pppoe.ca)
- # [20:12] <Hixie> why would anyone go to the effort of somehow getting DNS to return a fake entry just to get someone's forum password?
- # [20:13] <jgraham> Well it's quite high probability that that user uses the pw elsewhere
- # [20:13] * Joins: espadrine (~ttyl@AMontsouris-158-1-15-93.w92-128.abo.wanadoo.fr)
- # [20:13] <Hixie> (that's why for the spec's own stuff i generate passwords instead of letting you set it)
- # [20:14] <svl> if the user is an admin, quite some damage can be done with that password
- # [20:14] <Hixie> if a whatwg blog admin can be phished in that way, we have bigger problems
- # [20:15] <Hixie> like, they're probably not qualified to be doing their job
- # [20:15] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 246 seconds)
- # [20:15] * Joins: willchan (willchan@nat/google/x-wmyglditcsbxfido)
- # [20:16] * nephyrin` is now known as nephyrin
- # [20:16] <Hixie> we also have company.demos.whatwg.org which isn't covered by a cert
- # [20:19] * Quits: beowulf (~sstewart@host86-185-210-219.range86-185.btcentralplus.com) (Changing host)
- # [20:19] * Joins: beowulf (~sstewart@pdpc/supporter/professional/beowulf)
- # [20:19] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [20:23] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Ping timeout: 250 seconds)
- # [20:25] <Hixie> annevk: isn't there some way we can secure the DNS so that they can't do that, btw? It seems like if they can add DNS entries, they can probably get certs for them anyway.
- # [20:25] * Joins: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com)
- # [20:28] * Quits: slmult0 (~ctlM@80.83.239.72) (Ping timeout: 245 seconds)
- # [20:29] * Joins: slmult0 (~ctlM@80.83.238.59)
- # [20:38] <annevk> Hixie: from what I read DNSSEC doesn't really cover anything on top of TLS
- # [20:38] <annevk> Hixie: and as long as they don't control whatwg.org they cannot issue certificates for it if the CAs are doing their job
- # [20:38] * Quits: dbaron__ (~dbaron@50.0.192.112) (Quit: 8403864 bytes have been tenured, next gc will be global.)
- # [20:39] <Hixie> you want to bet that there's no CA that'll issue a cert for a subdomain?
- # [20:39] <Hixie> how do you do certs fro dyndns.org style setups then?
- # [20:43] * Joins: erlehmann_ (~erlehmann@g229083066.adsl.alicedsl.de)
- # [20:43] * Joins: ShaneHudson (~ShaneHuds@host86-149-123-177.range86-149.btcentralplus.com)
- # [20:44] * Quits: caitp (~caitp@CPE48f8b385c01c-CM602ad06daeed.cpe.net.cable.rogers.com) (Quit: Leaving)
- # [20:44] * Joins: caitp (~caitp@99.237.75.191)
- # [20:46] <Hixie> ok i'm going for lunch. Other than HSTS headers not being included in the https://whatwg.org to https://www.whatwg.org redirect, the existence of *.demos.whatwg.org, and the status of n.whatwg.org, i'm not aware of any open issues with respect to our TLS conversion.
- # [20:46] * Quits: erlehmann (~erlehmann@g226041003.adsl.alicedsl.de) (Ping timeout: 246 seconds)
- # [20:47] <mathiasbynens> \o/
- # [20:49] * erlehmann_ is now known as erlehmann
- # [20:52] <annevk> sounds great
- # [20:52] * Quits: slmult0 (~ctlM@80.83.238.59) (Ping timeout: 245 seconds)
- # [21:00] <annevk> mathiasbynens: are you using PHP? Have you had problems with the Header set directive not affecting PHP scripts?
- # [21:01] * Quits: hasather (~hasather@80.91.33.141) (Remote host closed the connection)
- # [21:02] * Joins: hasather (~hasather@80.91.33.141)
- # [21:03] * Joins: darobin (~darobin@2a01:e34:ed05:d180:9dd2:8808:9e84:b7d3)
- # [21:03] * Quits: KevinMarks (~yaaic@2607:fb90:1008:8e2c:1e72:293d:c270:41c7) (Ping timeout: 272 seconds)
- # [21:06] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 258 seconds)
- # [21:06] * Joins: slmult0 (~ctlM@80.83.238.55)
- # [21:09] * Joins: marcosc_ (~marcosc@135-23-143-163.cpe.pppoe.ca)
- # [21:09] * Quits: marcosc (~marcosc@135-23-143-163.cpe.pppoe.ca) (Read error: Connection reset by peer)
- # [21:12] * Joins: KevinMarks (~yaaic@2607:fb90:2c04:2ee8:797:f046:156b:6bc6)
- # [21:14] * Quits: ShaneHudson (~ShaneHuds@host86-149-123-177.range86-149.btcentralplus.com) (Ping timeout: 250 seconds)
- # [21:16] * Joins: mko (~mko@c-50-174-69-45.hsd1.ca.comcast.net)
- # [21:16] <mathiasbynens> annevk: yes and no
- # [21:19] <mathiasbynens> btw, time to change your freenode passwords everyone: https://blog.freenode.net/2014/09/server-issues-2/
- # [21:19] <mathiasbynens> annevk: details?
- # [21:23] * Joins: yoav (~yoav@208.184.147.3)
- # [21:24] <TabAtkins> mathiasbynens: Thanks for the heads-up.
- # [21:27] * Joins: tantek (~tantek@172.56.8.134)
- # [21:28] * Joins: jyasskin_w (jyasskin@nat/google/x-fmgozpqynimexsky)
- # [21:33] <mathiasbynens> just updated https://javascript.spec.whatwg.org/ and auto-replaced all *.whatwg.org/*.html5.org/annevankesteren.nl links in my blog database — feels good
- # [21:35] <caitp> huh, what does sequence<T> mean when it's the return type of an idl-exposed method? is that somehow different from Array<T>?
- # [21:35] <TabAtkins> caitp: It means you're returning an array.
- # [21:35] <TabAtkins> Array<T> doesn't exist in WebIDL, does it?
- # [21:35] * Quits: jernoble|laptop (~jernoble@17.202.45.163) (Quit: Textual IRC Client: www.textualapp.com)
- # [21:35] <caitp> I thought we already had an Array type in IDL
- # [21:36] <caitp> not Array<T> but T[]
- # [21:36] <TabAtkins> Those are different and terrible.
- # [21:37] <TabAtkins> I never remember exactly how/why.
- # [21:37] <TabAtkins> I've just learned over time that you should always use sequence<>.
- # [21:37] <caitp> nobody ever said webidl wasn't confusing :>
- # [21:39] <TabAtkins> Based on vague memories and reading the spec just now, T[] doesn't actually define a JS Array, just a look-alike.
- # [21:41] <caitp> I sort of thought it worked like rest parameters
- # [21:42] <caitp> sequence<> I mean
- # [21:42] <TabAtkins> ?
- # [21:42] <caitp> "this is a list representing a sequence of arguments", but I guess that doesn't make sense for a return value
- # [21:42] <TabAtkins> foo(sequence<T>) just means it'll take an array-like. It doesn't do any rest magic.
- # [21:43] <TabAtkins> IDL types in argument lists are just instructions for which conversion operation to do.
- # [21:43] <TabAtkins> They're actually "types" when used as return values.
- # [21:44] * Quits: slmult0 (~ctlM@80.83.238.55) (Ping timeout: 272 seconds)
- # [21:44] * Joins: dbaron (~dbaron@2620:101:80fb:224:98c7:5e0f:51af:410)
- # [21:45] * Joins: slmult0 (~ctlM@80.83.238.116)
- # [21:45] * Quits: paulohp (~paulohp@201.52.249.159) (Remote host closed the connection)
- # [21:46] * Joins: paulohp (~paulohp@201.52.249.159)
- # [21:50] * Quits: tantek (~tantek@172.56.8.134) (Quit: tantek)
- # [21:51] * Quits: paulohp (~paulohp@201.52.249.159) (Ping timeout: 272 seconds)
- # [21:53] * Joins: zcorpan (~zcorpan@ip-200.t2.se.opera.com)
- # [21:59] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [21:59] * Quits: svl (~me@ip565744a7.direct-adsl.nl) (Quit: And back he spurred like a madman, shrieking a curse to the sky.)
- # [22:00] * Joins: lmclister (~lmclister@192.150.10.204)
- # [22:03] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [22:03] * Joins: lmclister (~lmclister@192.150.10.204)
- # [22:05] <annevk> mathiasbynens: I run PHP under DreamHost's FastCGI
- # [22:05] <annevk> mathiasbynens: it does not seem to pick up on .htaccess' set headers
- # [22:05] <annevk> mathiasbynens: evidence is annevankesteren.nl
- # [22:06] * Joins: lerc (~quassel@121-74-5-229.telstraclear.net)
- # [22:06] <mathiasbynens> annevk: HSTS, you mean?
- # [22:06] <annevk> mathiasbynens: yes
- # [22:06] * Joins: KevinMarks_ (~yaaic@2607:fb90:2c35:b71c:55af:74dc:91f7:f2d5)
- # [22:06] <mathiasbynens> what does the .htaccess look like
- # [22:06] * Quits: zenparsing (~zenparsin@97-81-81-172.dhcp.athn.ga.charter.com)
- # [22:07] <mathiasbynens> Header set Strict-Transport-Security "max-age=31536000; includeSubDomains" env=HTTPS
- # [22:07] * Quits: KevinMarks (~yaaic@2607:fb90:2c04:2ee8:797:f046:156b:6bc6) (Ping timeout: 260 seconds)
- # [22:07] <mathiasbynens> …is what i’m using
- # [22:07] <annevk> Yeah it looks like that, it's picked up by e.g. html5.org just fine
- # [22:08] <mathiasbynens> ah, indeed, and https://annevankesteren.nl/test/ has the correct header too
- # [22:08] <mathiasbynens> no clue tbh :/
- # [22:09] <mathiasbynens> annevk: http://serverfault.com/a/383063/13896
- # [22:10] <annevk> Header always set then?
- # [22:11] <mathiasbynens> i’d give that a try
- # [22:11] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [22:13] <annevk> nope
- # [22:13] <mathiasbynens> :(
- # [22:14] * npcomp_ is now known as npcomp
- # [22:17] * Joins: hasather (~hasather@80.91.33.141)
- # [22:18] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Read error: Connection reset by peer)
- # [22:18] * Joins: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net)
- # [22:20] * Quits: erlehmann (~erlehmann@g229083066.adsl.alicedsl.de) (Quit: Die demokratieerhaltende Whistleblowerplattform Krautchan freut sich immer über Spenden.)
- # [22:20] <annevk> mathiasbynens: https://html5.org/tools/web-apps-tracker which is a Python script includes the header regardless of the always setting
- # [22:21] <annevk> Reading those docs I wonder if Header unset X-Pad works
- # [22:22] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 272 seconds)
- # [22:25] * Quits: TimmyTones (~Tim@cpc69048-oxfd25-2-0-cust725.4-3.cable.virginm.net) (Quit: Leaving...)
- # [22:25] * Quits: slmult0 (~ctlM@80.83.238.116) (Ping timeout: 246 seconds)
- # [22:27] * Joins: paulohp (~paulohp@201.54.224.235)
- # [22:30] * Quits: darobin (~darobin@2a01:e34:ed05:d180:9dd2:8808:9e84:b7d3) (Remote host closed the connection)
- # [22:33] <zcorpan> annevk: yeah i think php doesn't do anything with headers set in htaccess
- # [22:34] <annevk> But all over the web it's suggested it should
- # [22:34] <zcorpan> oh. then i dunno
- # [22:34] <mathiasbynens> zcorpan: it does for me, but then again i’m not using php-cgi
- # [22:35] <zcorpan> might need to flip something in php.ini or whatever. php has lots of twiddles
- # [22:36] <mathiasbynens> P̆ͭ҉̭̗H̓͆҉̸͞Pͧ̄҉͖̱
- # [22:36] <annevk> There's https://bugs.launchpad.net/ubuntu/+source/libapache-mod-fastcgi/+bug/1368308
- # [22:36] <mathiasbynens> “This bug affects 1 person”
- # [22:37] * Quits: paulohp (~paulohp@201.54.224.235) (Ping timeout: 250 seconds)
- # [22:37] <annevk> https://gist.github.com/mfdj/11122524 is someone with the same problem
- # [22:38] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 246 seconds)
- # [22:39] <mathiasbynens> give up and use `header()` i guess
- # [22:39] * Joins: Smylers (~smylers@host86-186-193-22.range86-186.btcentralplus.com)
- # [22:42] <annevk> Almost did configuration with a single file for a dozen domains, now I have to hack dozens of PHP files
- # [22:42] * Quits: lmclister (~lmclister@192.150.10.204) (Read error: Connection reset by peer)
- # [22:43] * Joins: lmclister (~lmclister@192.150.10.204)
- # [22:47] <annevk> If it would not be such a hassle to switch from DreamHost...
- # [22:49] * Joins: paulohp (~paulohp@201.54.224.235)
- # [22:55] * Quits: boogyman (~boogyman@pdpc/supporter/professional/boogyman) (Quit: Leaving.)
- # [22:58] * Quits: scor (~scor@drupal.org/user/52142/view) (Ping timeout: 272 seconds)
- # [22:59] <jgraham> There's an element of sunk cost fallacy about that argument :)
- # [23:00] <zcorpan> annevk: fwiw opera hides https://
- # [23:00] * Quits: dbaron (~dbaron@2620:101:80fb:224:98c7:5e0f:51af:410) (Quit: 8403864 bytes have been tenured, next gc will be global.)
- # [23:01] * Joins: dbaron (~dbaron@2620:101:80fb:232:3d5e:4fa6:10aa:1e58)
- # [23:01] <annevk> jgraham: it's opportunity cost I think
- # [23:01] <annevk> jgraham: since switching is non-zero-cost
- # [23:01] * Joins: say2joe1 (~say2joe@rrcs-76-79-68-2.west.biz.rr.com)
- # [23:02] * Quits: say2joe (~say2joe@rrcs-76-79-68-2.west.biz.rr.com) (Read error: Connection reset by peer)
- # [23:02] <annevk> Seems I already somewhat started on a common header include file, yay me
- # [23:03] * annevk submitted a whole bunch of sites to https://hstspreload.appspot.com/
- # [23:03] <jgraham> annevk: Right, but if the cost of switching in the long term is smaller than the cost of maintaining the DH setup it's a poor choice
- # [23:03] * Quits: TallTed (~Thud@63.119.36.36)
- # [23:04] <jgraham> I have no idea if it is or not
- # [23:05] <annevk> I might try rent a VPS with TransIP at some point and play around to see if it meets my needs
- # [23:06] <annevk> Having full control over the server and DNS is somewhat enticing
- # [23:06] * Joins: jeremyj_ (~jeremyj@17.202.49.56)
- # [23:07] <jgraham> Seems kind of expensive after the first 3 months
- # [23:10] <zcorpan> jgraham: opera 12 showed the path, it just hid the query and hash (and scheme)
- # [23:10] * Joins: yoav (~yoav@208.184.147.3)
- # [23:11] <annevk> jgraham: I'm open to recommendations I guess
- # [23:11] * Quits: Maurice (copyman@unaffiliated/maurice)
- # [23:12] <annevk> jgraham: ideally I'd have something managed, but also full control...
- # [23:12] <jgraham> zcorpan: Yeah, you're right. I just remember it did something very annoying. And I spent a long time arguing with Sigbjørn that it would be very annoying and eventually I did indeed find it very annoying :)
- # [23:13] * Quits: ehsan (~ehsan@66.207.208.102) (Remote host closed the connection)
- # [23:13] <zcorpan> i also find it annoying (hiding the scheme is ok so long as copy/paste includes it)
- # [23:13] * Joins: ehsan (~ehsan@2001:450:1f:224:7dc3:1557:1e37:f60b)
- # [23:14] <jgraham> Yeah, the scheme is fine, I don't really use it to locate myself. But the query is the most important thing on many sites
- # [23:15] * Quits: r4vi (~r4vi@184.106.109.213) (Remote host closed the connection)
- # [23:15] * Quits: yoav (~yoav@208.184.147.3) (Ping timeout: 246 seconds)
- # [23:17] * Joins: r4vi (~r4vi@184.106.109.213)
- # [23:18] * Quits: ehsan (~ehsan@2001:450:1f:224:7dc3:1557:1e37:f60b) (Ping timeout: 272 seconds)
- # [23:21] * Joins: hasather (~hasather@80.91.33.141)
- # [23:22] <zcorpan> Hixie: does n.whatwg.org need to exist?
- # [23:22] <jgraham> annevk: Well I have used Linode who seem to be OK
- # [23:24] <zcorpan> annevk: is it a problem if n.whatwg.org doesn't use TLS?
- # [23:25] * Quits: hasather (~hasather@80.91.33.141) (Ping timeout: 255 seconds)
- # [23:28] * Quits: zdobersek (~zan@109.201.152.225) (Quit: Leaving.)
- # [23:31] * Quits: dbaron (~dbaron@2620:101:80fb:232:3d5e:4fa6:10aa:1e58) (Quit: 8403864 bytes have been tenured, next gc will be global.)
- # [23:32] * Joins: dbaron (~dbaron@2620:101:80fb:224:9503:aff:1d27:8627)
- # [23:32] * Joins: boogyman (~boogyman@50.167.218.18)
- # [23:33] * Quits: boogyman (~boogyman@50.167.218.18) (Changing host)
- # [23:33] * Joins: boogyman (~boogyman@pdpc/supporter/professional/boogyman)
- # [23:34] <jgraham> I think that "does it need to exist" is a better question
- # [23:38] <zcorpan> seems like it's a problem if the HSTS header for whatwg.org says includeSubDomains? but yeah
- # [23:39] <Hixie> zcorpan: well, it's a minted namespace.
- # [23:39] <Hixie> zcorpan: so some people think it should
- # [23:39] * Quits: tj_vantoll (~Adium@c-98-250-130-237.hsd1.mi.comcast.net) (Quit: Leaving.)
- # [23:40] <Hixie> the HSTS header for whatwg.org doesn't currently includeSubdomains because of n.whatwg.org and company.demos.whatwg.org
- # [23:41] <annevk> See also http://tools.ietf.org/html/rfc6797#section-14.4 for why includeSubdomains exists
- # [23:42] * Joins: lilmonkey (~colin@5ED090B0.cm-7-1c.dynamic.ziggo.nl)
- # [23:42] * Quits: lilmonkey (~colin@5ED090B0.cm-7-1c.dynamic.ziggo.nl) (Changing host)
- # [23:42] * Joins: lilmonkey (~colin@pdpc/supporter/professional/riven)
- # [23:42] <jgraham> What is company.demos.whatwg.org?
- # [23:43] <Hixie> annevk: seems like a serious problem to me if people can add new subdomains
- # [23:43] <Hixie> annevk: i'm also confused as to how dyndns.org and local intranet sites (e.g. printers) are supposed to get certs
- # [23:44] * Quits: bnicholson (~bnicholso@2620:101:80fc:224:8517:d573:db3b:4a82) (Remote host closed the connection)
- # [23:45] * scheib___ is now known as scheib
- # [23:46] * Quits: lilmonkey` (~colin@pdpc/supporter/professional/riven) (Ping timeout: 260 seconds)
- # [23:46] * Quits: scheib (sid4467@gateway/web/irccloud.com/x-jrpflxiuswljuxsm)
- # [23:46] <annevk> Hixie: you need to get public names for your local intranet starting November 2015
- # [23:47] * Joins: scheib (sid4467@gateway/web/irccloud.com/x-mvfayscnwhmcirps)
- # [23:47] <annevk> Hixie: I hope we can find something better than this CA system though
- # [23:47] <annevk> Hixie: there's http://tack.io/ but it seems dormant
- # [23:48] <Hixie> how do you mean, "you need to get public names for your local intranet starting November 2015"
- # [23:48] <Hixie> and are you saying that you can't host web sites using TLS on *.dyndns.org ?
- # [23:50] * Parts: guybedford (~guybedfor@41-133-249-7.dsl.mweb.co.za)
- # [23:55] <Hixie> jgraham: some demo site linked to from http://whatwg.org/demos/
- # [23:55] <Hixie> jgraham: do you like the new html spec url btw?
- # [23:55] <willchan> if you can prove ownership of the {x}.dyndns.org hostname to a SSL CA doing domain validation, then you can serve https for it
- # [23:55] <annevk> Hixie: see e.g. https://www.digicert.com/internal-names.htm for the November 2015 change in CA policies
- # [23:56] <annevk> I wish I had a better reference, maybe something on https://cabforum.org/
- # [23:56] <annevk> I said the other day something about TC39 being bad, CA|B is worse
- # [23:56] <annevk> Or CA/B
- # [23:57] <willchan> annevk: there's hpkp (https://tools.ietf.org/html/draft-ietf-websec-key-pinning) which is supported today (whereas tack is still a WIP). it's fairly high maintenance though.
- # [23:58] <annevk> https://cabforum.org/internal-names/ looks like a more formal announcement of the November 2015 thing
- # [23:59] <zcorpan> Hixie: annevk: ok added a header for forums.whatwg.org
- # Session Close: Tue Sep 16 00:00:00 2014
The end :)