[6179] in cryptography@c2.net mail archive
Re: Thawte "SuperCerts"
daemon@ATHENA.MIT.EDU (Steven M. Bellovin)
Wed Dec 1 22:19:23 1999
From: "Steven M. Bellovin" <smb@research.att.com>
To: EKR <ekr@rtfm.com>
Cc: "Marcus Leech" <mleech@nortelnetworks.com>,
Radia Perlman - Boston Center for Networking <Radia.Perlman@east.sun.com>,
cryptography@c2.net
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Wed, 01 Dec 1999 21:34:06 -0500
Message-Id: <19991202023412.64A6D41F16@SIGABA.research.att.com>
In message <kjvh6if9pg.fsf@romeo.rtfm.com>, EKR writes:
> I'm assuming it's compiled into the code, since if it were in the
> cert database, it could be tampered with.
Sure -- just like Fortify can't exist...
--Steve Bellovin
