• ☆ Yσɠƚԋσʂ ☆OP
    link
    fedilink
    arrow-up
    14
    arrow-down
    8
    ·
    1 year ago

    The concern with WEI proposal is that it’s going to be server enforced. Basically, the server will require browsers to be signed and will refuse to talk to ones it doesn’t recognize the signature for. This will mean that you’ll only be able to talk to such servers using a browser that’s approved by whoever distributes these certs. This is a great explanation of the whole scheme.

    • wewbull@feddit.uk
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      1 year ago

      So we need some brave people to put tests on their server and block anyone using a client that responds to this authentication.

      Sadly, for most people, there’s no site that isn’t run by a FANG that they know exists. Maybe we need to put the blocks in Apache and nginx instead.