[tech] Plaintext Gemini extension
arturh at gmail.com
Wed Mar 10 09:13:33 GMT 2021
Thanks Björn, I totally get that. Nevertheless, isn't the protocol still
vulnerable to first connection MITM attacks?
On Wed, Mar 10, 2021 at 9:54 AM Björn Wärmedal <bjorn.warmedal at gmail.com>
> On Wed, 10 Mar 2021 at 09:18, Artur Honzawa <arturh at gmail.com> wrote:
> > It probably has been proposed before, but this is how I could see it
> > Serve rot13 encoded stream in port 1964 as fallback for clients without
> TLS support.
> > Add gemini-plaintext: schema for servers without TLS support.
> > Low implementation burden overall, old hardware support. Thoughts?
> All current gemini servers and clients support TLS, and the presence
> of encryption is a cornerstone of gemini. If you don't want it you can
> use gopher instead :)
> Supporting old hardware is a noble goal, but I'd say that's better
> achieved by building a proxy service somewhere that serves gemini
> capsules over http.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gemini