[ioquake3] ff3 vs bugzilla
Thilo Schulz
arny at ats.s.bawue.de
Thu May 29 01:47:14 PDT 2008
Hi,
Can anyone here give me any valid reason, why I should trust the plethora of
certification authorities, that come with the openssl cert bundle installed
with the browser?
On Donnerstag, 29. Mai 2008, monk at rq3.com wrote:
> and I think they have to be renewed yearly. Blah!
And why this is a good thing can be seen with the latest openssl fuckup.
Someone who was quick enough already generated a valid "signed" OpenSSL cert
for akamai that will get accepted by any browser :-)
And then there's this bank whose certificate only expires after 3 years:
http://lists.grok.org.uk/pipermail/full-disclosure/2008-May/062537.html
That means, all certificates for this bank are practically worthless for as
long as the old certificate is still valid.
--
Thilo Schulz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.ioquake.org/pipermail/ioquake3-ioquake.org/attachments/20080529/2b177009/attachment.pgp>
More information about the ioquake3
mailing list