[144419] in North American Network Operators' Group
Re: Microsoft deems all DigiNotar certificates untrustworthy,
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Sun Sep 11 15:39:09 2011
To: Keith Medcalf <kmedcalf@dessus.com>
In-Reply-To: Your message of "Sun, 11 Sep 2011 13:00:09 MDT."
<7798fc1cb3ee3c42bad613adb2f3dc6d@mail.dessus.com>
From: Valdis.Kletnieks@vt.edu
Date: Sun, 11 Sep 2011 15:37:36 -0400
Cc: North American Network Operators Group <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--==_Exmh_1315769856_28234P
Content-Type: text/plain; charset=us-ascii
On Sun, 11 Sep 2011 13:00:09 MDT, Keith Medcalf said:
> The current system provides no more authentication or confidentiality
> than if everyone simply used self-signed certificates.
Not strictly true. The current system at least gives you "you have reached
the hostname your browser tried to reach". A self-signed cert doesn't
even give you that.
--==_Exmh_1315769856_28234P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFObQ4AcC3lWbTT17ARAob8AKCoulIrvto1JhCHvgylKMLdA7ueagCffDH0
ztMa/Nipj0w0TXG4SfMbf4w=
=J0qC
-----END PGP SIGNATURE-----
--==_Exmh_1315769856_28234P--
