[18276] in cryptography@c2.net mail archive
Re: Another entry in the internet security hall of shame....
daemon@ATHENA.MIT.EDU (Ian G)
Thu Aug 25 16:58:30 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Thu, 25 Aug 2005 21:51:46 +0100
From: Ian G <iang@systemics.com>
To: "Trei, Peter" <ptrei@rsasecurity.com>
Cc: Peter Saint-Andre <stpeter@jabber.org>, cryptography@metzdowd.com
In-Reply-To: <017630AA6DF2DF4EBC1DD4454F8EE29704776F1E@rsana-ex-hq1.NA.RSA.NET>
Trei, Peter wrote:
> Self-signed certs are only useful for showing that a given
> set of messages are from the same source - they don't provide
> any trustworthy information as to the binding of that source
> to anything.
Perfectly acceptable over chat, no? That is,
who else would you ask to confirm that your
chatting to your buddy?
iang
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
