[19496] in cryptography@c2.net mail archive
Re: ADMIN: end of latest SSL discussion
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Tue Jan 3 13:42:12 2006
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
To: cryptography@metzdowd.com, , perry@piermont.com
Date: Sat, 31 Dec 2005 13:49:21 +1300
"Perry E. Metzger" <perry@piermont.com> writes:
>The latest round of "SSL and X.509 certs in browsers are broken" has gone on
>too long.
It's been a good start though. The first step towards recovery is admitting
that you have a problem...
Hi. My name is Peter and I have an X.509 problem. Initially it was just
small things, a little PKI after lunch, maybe a digital ID after dinner and a
small CRL as a nightcap. Then I discovered OCSP, and started combining low-
and high-assurance certificates. It just got worse and worse. In the end I
was experimenting with cross-certifying CAs and even freebasing trust
anchors. One morning I woke up in bed next to a giant lizard wearing a
Mozilla t-shirt and knew I had a problem.
It's now been six weeks since my last PKI...
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
