[146783] in cryptography@c2.net mail archive
[Cryptography] How to get really paranoid
daemon@ATHENA.MIT.EDU (Jerry Leichter)
Sat Sep 7 20:17:41 2013
X-Original-To: cryptography@metzdowd.com
From: Jerry Leichter <leichter@lrw.com>
Date: Sat, 7 Sep 2013 19:03:54 -0400
To: Cryptography List <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
So I'm reading some of the recent threads here, and all of a sudden, Mail.app warns me of a problem with a cert. I have an old, essentially unused, Yahoo email address that came along for free when I got DSL from AT&T years ago. As with all my email connections, I require SSL - which may be about as effective as tossing salt over my shoulder, but hey, it's still the best we've got. It's been working fine - well, the servers are noticeably slow - for years. All of a sudden, I'm told by Mail.app that it can't verify the cert for connecting to smtp.att.yahoo.com because it was signed by an unknown authority. Its signer is DigiCert - it's a "DigiCert High Assurance CA-3" signing certificate. Expires on November 13 of this year.
Bizarre. Time to replenish my stocks of aluminum foil. :-)
-- Jerry
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
