Bonum Certa Men Certa

Fedora 40 Removing Version of WebkitGTK That Many Applications Need and Commentary on HTTP/2 and 3



Reprinted with permission from Ryan Farmer.

Fedora 40 Removing Version of WebkitGTK That Many Applications Need.



Fedora 40 will remove the oldest of three builds of WebkitGTK.



As of now, there’s a fairly large list of widely used software, at the bottom of this “change” page that needs this version.



WebkitGTK is part of the GTK toolkit.



Removing it basically means that part of the toolkit, which you told application developers would be available to them is gone.



The stated reason:



“Building three different package versions is slow, and Red Hat does not wish to do so anymore.”



They also stated:



“This is a slimmed-down version of the libsoup 3: Part Two change proposal that was previously rejected by FESCo. Instead of removing all packages that depend on libsoup 2, packages will only be removed if they depend on both libsoup 2 and also WebKitGTK. No effort will be made to remove libsoup 2 from the distribution (though an obsolete HTTP library is a major security risk and packages really ought to stop using it).”



As to the part about it being slow, I’ve built WebkitGTK on my old 2016 laptop in minutes.



As to the part about HTTP 1.1 being slow, bullshit.



I still use HTTP 1.1 in SeaMonkey and it loads most sites as fast as other browsers.



It turned out that after all that time saying that you needed to replace it, that come to find out, when you’re not blocking at the HTTP layer, you usually are blocking due to TCP itself.



As HTTP/2 still runs on top of a single open TCP connection, you can get head-of-line blocking at that level if any TCP packets are delayed or fail to reach the other end of the connection.



So now, and this standard isn’t even 8 years old, HTTP 1.1 is 26 years old and still very widely used, they plot HTTP/2’s demise because it wasn’t well-designed, and they say HTTP/3 won’t even use TCP at all.



It will use UDP and construct its own transport layer (QUIC) and congestion control protocol on top of it. I’m sure they’ll get everything right this time!



Only 36% of the top 10 million Web sites have HTTP/2 support as of July 2023, and that’s actually down from about half in late 2022.



I think we need to stop and ask why servers are turning this off and reverting to HTTP 1.1 before we continue with the propaganda.



Regardless, libsoup 2 probably isn’t that big of a deal, in and of itself. Maybe by libsoup 14 you can finally be fast?



Almost all Web browsers (everything except I think Lynx, SeaMonkey, and possibly a few others) have had HTTP/2 on for a while now, so why would sites start turning it off, I wonder? Anyone?



Sites that don’t want to use TLS more or less have to use HTTP 1.1.



Although the standard for HTTP/2 doesn’t mandate TLS, every browser that implements it does. So they will refuse to connect over HTTP/2 unless you also use TLS.



This whole thing is part of a power grab by the TLS certificate cartel. The “Certificate Authorities”, and it’s an obvious plot to censor what people can even put on the Web in the future.



At some point, if support on Web sites for HTTP/2 became universal, Google could just decide to drop HTTP 1.1 and then TLS would be mandatory.



Some don’t seem to understand why Techrights has a self-signed certificate.



Technically, THIS may not even work someday. Instead of a big scary screen that browsers use to scare your viewers away, the browser may just refuse to connect to the Web site at all without a cartel certificate.



This is another reason to use simpler protocols that Google and Microsoft and various government three letter spy agencies don’t dictate.



I look at Web resources on Gemini and Gopher all the time because it’s less painful once they’ve just been stripped back down of all this Web garbage and reformatted into text, and faster too, even through a proxy!



In Gemini, users are encouraged to use self-signed certificates. Gopher doesn’t have them at all! I’m not doing onling banking with Gopher. Why do I need TLS?

Recent Techrights' Posts

FSF Has Made It Halfway to Its Target (Funding Goal) a Week Before Christmas Day
$400,000 definitely seems reachable now, especially if they extend the "deadline"
Saving What's Left of Decent and Independent Journalism on the Web
We increasingly (over time) try to make local copies (hosted on our server) of important documents; it's hard to rely on third parties
Brian Fagioli's Latest "Linux" Article Appears to be Fake
Another form of plagiarism/ripoff using bots?
 
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, December 18, 2024
IRC logs for Wednesday, December 18, 2024
[Meme] The Master Churnalist
Speaking of press releases being passed off as "journalism"
Spamnil's TFiR: Still Pretending Press Releases Are 'Articles' (TFiR 'Originals' as Plagiarism or Fluff)
Same as last year
Links 18/12/2024: Zakir Hussain Dies, TuneIn Layoffs
Links for the day
Links 18/12/2024: Karate Love and Advent of Code
Links for the day
Windows (or Microsoft) Has Become the "One Percent" (Market Share) in Chad
How long before it falls below 1%?
Arvind Krishna, IBM's CEO, Will Eventually Suck Up to Donald Trump Like His Predecessor Did or the Watson Family Did With Adolf Hitler
Literally Hitler
Being a Geek Need Not Mean Being Sedentary
"In the past 18 months," Berkholz writes, "I’ve lost 75 pounds and gone from completely sedentary to fit, while minimizing the effort to do so (but needing a whole lot of persistence and grit)."
GAFAM Kissing the Ring of the Mafia Don
"resistance" to dictatorship and defenders of democracy?
Slop Spaghetti From the Chef, Second Time Today
Fresh slop ready out the oven!
IBM - Like Microsoft - Lies About the Number of People It's Laying Off (Several Tens of Thousands, Not Counting R.T.O. "Silent" Layoffs and Contractors/Perma-Temps)
How many waves of silent layoffs have we seen so far at IBM this year?
Links 18/12/2024: EU Launches Probe Into TikTok (At Last!)
Links for the day
Links 18/12/2024: Doha/Qatar Trafficking, Bloat Comfort Zone, and Advent of Code 2024
Links for the day
[Meme] Microsoft's Latest Marketing Pitch
"Stop Being Poor; buy a new PC with TPMs"
In South Africa, a Very Large Nation, Web Developers Can Already Ignore Microsoft Browsers (Edge Measured Below 3% in 55 Nations)
The dumb assumption you must naively test with Microsoft browsers is no longer applicable in a lot of places
Open Source Initiative (OSI) is the Voice of Bill Gates and Satya Nadella
Not hard to see what they've done with the money
Microsoft Boasts That Its (Microsoft-Sponsored) "Open Source AI" Propaganda Got Cited in Media (That's Just What the Money Did)
This is a grotesque openwashing campaign
In Many Places Around the World, Perhaps as Expected, Yandex is Nearly Bigger Than Microsoft (Like in Several African Countries)
Microsoft may soon fall to "third place" in search
Keeping Productive This Christmas
We've (pre)paid for hosting till almost January 2026 and fully back on the saddle
IBM and Canonical Leave Money on the Table Because Microsoft Pays Them Not to Compete and Instead Market Windows, WSL, Microsoft 'Clown Computing', and TPMs
Where are the regulators?
Other Editors Who Agree "Hey Hi" (AI) is Just Hype But Won't Say So Publicly as It Might Upset Key Sponsors
Some media would gladly participate in a scam to make money
IBM (and Red Hat) is a Patent Troll, Still Leveraging Software Patents to Extract Money Out of Other Companies by Suing Them
Basically, when it comes to patents, IBM is demonstrably part of the problem, not the solution
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, December 17, 2024
IRC logs for Tuesday, December 17, 2024
[Meme] When the People Who Falsely Accuse You of Pedophilia Turn Out to be Projecting
When you attack something or someone using falsehoods, as happens a lot to Richard Stallman (RMS), there's risk that the attacks will backfire, badly
In Some Countries, Such as Greece, Almost 80% of Windows Users Are on Vista 10 and About 85% Need to Move to GNU/Linux for Security Patches
Vista 11 was a failure
[Meme] They Don't Want the Public to Know What "Responsible Encryption" Really Means
They also blame "China" for their own back doors (because China learned how to exploit those)
The Linux Foundation's Certificate Authority (CA) Significantly and Suspiciously Raises the Number of Certificates It Issues (Quantity Increase/Inflation) by Lessening Their Lifetime in the Name of 'Security' (That Barely Makes Sense!)
LE made 3 months the "standard" for most, soon to become just 6 days instead of 6 months?
Why I Continue to Believe That at the End Software Freedom Will Win
a short and incomplete list of factors which I believe contribute to the sentiment that we can - and will - win the battles over hearts and minds in the "Tech" realm
Links 17/12/2024: More China Sanctions, GOP Scheming to Prop Up Fentanylware (TikTok)
Links for the day
Gemini Links 17/12/2024: The Streisand Effect and Productivity-systems Desiderata
Links for the day
Technology: rights or responsibilities? - Part X
By Dr. Andy Farnell
Links 17/12/2024: More "Tesla Autopilot" and "Hey Hi" (AI) Blunders
Links for the day
Instead of Promoting GNU/Linux (or Ubuntu) Ahead of Vista 10's EoL Canonical is Marketing Microsoft's Proprietary Software
It's like Canonical employs people who work for Microsoft, not for Canonical
Links 17/12/2024: Many Abuses by Microsoft and War Updates From Ukraine
Links for the day
Content Management Systems (CMS) Bloat/ Static Site Generators (SSG) Trouble
some Web site management stories
DEI Room at fedoraproject.org Pretty Much Dead
We're not against diversity but against its weaponisation by greedy people who do not value diversity at all
The "Latest Technology News" at BetaNews is Slop About Slop
This is at the very top of the "news" (front page) at the moment
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, December 16, 2024
IRC logs for Monday, December 16, 2024