Re: SSL is broken on FreeBSD

看板FB_security作者時間14年前 (2011/04/05 11:01), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串31/42 (看更多)
<<On Tue, 5 Apr 2011 09:05:47 +1000, richo <richo@psych0tik.net> said: > On 05/04/11 06:57 +1000, Peter Jeremy wrote: >> It has occurred to me that maybe the FreeBSD SO should create a root >> cert and distribute that with FreeBSD. That certificate would at >> least have the same trust level as FreeBSD. >> >> -- >> Peter Jeremy > But what would that CA trust? The certificates he also generates for services like freebsd-update and portsnap. And probably also a certificate for use in email to the security-officer role, so that those benighted people who only have access to S/MIME email can still send him private messages. Ideally it would also be used to sign the CHECKSUMS files on the FTP site, so that the installer could check whether it was talking to an authentic mirror site and ask the user what to do. -GAWollman _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 wollman. 的文章
文章代碼(AID): #1DceNkLi (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 31 之 42 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共42篇)
更多 wollman. 的文章
文章代碼(AID): #1DceNkLi (FB_security)