From f830adb81c0ffecaaf216dec9d62bdb9f86d669e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Bob=20Dr=C3=B6ge?= <b.e.droge@rug.nl>
Date: Fri, 16 Feb 2024 17:41:41 +0100
Subject: [PATCH] added sentence about downside of https

---
 docs/filesystem_layer/stratum1.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/filesystem_layer/stratum1.md b/docs/filesystem_layer/stratum1.md
index e888bb35b..7da90ad68 100644
--- a/docs/filesystem_layer/stratum1.md
+++ b/docs/filesystem_layer/stratum1.md
@@ -36,6 +36,7 @@ However, EESSI provides a synchronisation server that can be used for setting up
     If this is the case, you can try switching to HTTPS by using `https://aws-eu-west-s1-sync.eessi.science` for synchronizing your Stratum 1.
     Even though there is no advantage for CVMFS itself in using HTTPS (it has built-in mechasnims for ensuring the integrity of the data),
     this will prevent the described issues, as the intrusion prevention system will not be able to inspect the encrypted data.
+    As HTTPS does introduce some overhead due to the encryption/decryption, it is still recommended to use HTTP as default.
 
 ### Manual configuration