[138948] in North American Network Operators' Group
Re: The state-level attack on the SSL CA security model
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Mar 24 11:02:12 2011
In-Reply-To: <20110324101947.GA11913@nike.aronius.se>
Date: Thu, 24 Mar 2011 10:59:40 -0400
From: Christopher Morrow <morrowc.lists@gmail.com>
To: Joakim Aronius <joakim@aronius.se>
Cc: nanog group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Thu, Mar 24, 2011 at 6:19 AM, Joakim Aronius <joakim@aronius.se> wrote:
> IF the speculations about a specific nation is true then there is a risk that people there run real (like physical) risks by using e.g. yahoo the last few days. They would have appreciated being informed.
>>
if speculation is true, then all bets are off, and telling anyone
isn't necessarily going to help those under the thumb of the
speculated attacker....
just sayin!
(also, vote now, vote often for dane-wg to get it's work done...
dns-sec secured key fingerprints for ssl certs)
