Is this something that will only affect Google Chrome or other chromium based browsers immediately? I’m on Firefox already but the change isn’t so appealing to friends who are on Google Chrome.
The concern with WEI proposal is that it’s going to be server enforced. Basically, the server will require browsers to be signed and will refuse to talk to ones it doesn’t recognize the signature for. This will mean that you’ll only be able to talk to such servers using a browser that’s approved by whoever distributes these certs. This is a great explanation of the whole scheme.
Is this something that will only affect Google Chrome or other chromium based browsers immediately? I’m on Firefox already but the change isn’t so appealing to friends who are on Google Chrome.
The concern with WEI proposal is that it’s going to be server enforced. Basically, the server will require browsers to be signed and will refuse to talk to ones it doesn’t recognize the signature for. This will mean that you’ll only be able to talk to such servers using a browser that’s approved by whoever distributes these certs. This is a great explanation of the whole scheme.
So we need some brave people to put tests on their server and block anyone using a client that responds to this authentication.
Sadly, for most people, there’s no site that isn’t run by a FANG that they know exists. Maybe we need to put the blocks in Apache and nginx instead.