[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] How evil is TLS cert collection?

To: tor-talk@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-talk] How evil is TLS cert collection?
From: grarpamp <grarpamp@xxxxxxxxx>
Date: Fri, 25 Mar 2011 03:23:10 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 25 Mar 2011 03:23:25 -0400
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:in-reply-to:references:date :message-id:subject:from:to:content-type; bh=2XbKVqAc0w2k8elHMJ1xHcWAp5HGksMjiKKCl6Yw16Q=; b=pTxNDz1TdwQLwL8AsuwduaQqVTBrIANMFcraIsIbYajB6nbXqVt4fnunYglfPps5Z0 BEpOhe6thKa0X/AOtoWo2zUyUxPRfWSybQr5BRiERTRAtcsaSeJ1arulu3JFnveKnsVw 3HtCFrxIWMmUmLu+mndr8F2teoKjIYTBAtPGI=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=vOfjT+fTUUZF0ch9/M6JvBCZSQQhxUEfqCtPWrBKPo8NOpR/tMkLPKQ4DGqJvxlxpn Tu+uG39NZADVJg4z1eS8Zd0L9NGdopEn/7jEEGuqMNJoqByPlXrGMq4NQxEH+jAQVBNS tKJwvKuyf0LYp0uduQKMw4ci1JQhhjEd1WUQY=
In-reply-to: <20110323024031.52c495cf@xxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "This mailing list is for all discussion about theory, design, and development of Onion Routing." <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <20110321005806.GA15548@xxxxxxxxxx> <20110321095644.04c73f07@xxxxxxxxx> <20110322000938.GB15967@xxxxxxxxxx> <20110322182640.6f9e050c@xxxxxxxxx> <20110323041946.GF15967@xxxxxxxxxx> <20110323024031.52c495cf@xxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx

> But, if the EFF runs an exit enclave at observatory.eff.org, shouldn't

Always thought it would be useful to have a third party service
where you could feed it a cert's sha1 fingerprint and it would
return 0 or 1 if it felt that fp was legit.
Many people have only one supposedly 'clear' view of the net
from which to see. Tor exits certainly cannot be trusted to
have a taint free view. And verification with CA issuer/subject
is a pain. Call it a looking glass without guarantee.
_______________________________________________
tor-talk mailing list
tor-talk@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

References:
- [tor-talk] How evil is TLS cert collection?
  - From: Mike Perry
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Robert Ransom
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Mike Perry
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Robert Ransom
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Mike Perry
- Re: [tor-talk] How evil is TLS cert collection?
  - From: Robert Ransom

Prev by Author: Re: [tor-talk] How evil is TLS cert collection?
Next by Author: Re: [tor-talk] Iran cracks down on web dissident technology
Previous by thread: Re: [tor-talk] How evil is TLS cert collection?
Next by thread: [tor-talk] Torbutton 1.3.2-alpha released
Index(es):
- Author
- Thread