Are there any good reasons for servers that support HTTPS to allow HTTP connections without TLS? My site currently forces HTTPS. Intuitively that seems like the right choice to me. Is there a reason I shouldn't do this?
@vecna it is a controversial opinion but: support for OSes that dont support the newer TLS protocols. Either people using old machines, or people buying new low-end smartphones that come with android 4 etc.
@vecna old browser/hardware support, fascist governments that block HTTPS
@vecna breaks caching proxys for those that need it.
A friendly mastodon instance primarily for shitposting, gays, and the glory of the free and open source software movement.