[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-talk] How to pin the SSL certificate for torproject.org?

A malicious certificate for torproject.org has been given out at least twice by broken certificate authorities. (Comodo, DigiNotar, who is next...)

To prevent that in future, I'd like to pin the SSL certificate's fingerprint. How can that be done? Running an own local CA or is there an easier way?

How to download the SSL public key from torproject.org and sign it with a local CA?

powered by Secure-Mail.biz - anonymous and secure e-mail accounts.

tor-talk mailing list