lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <58DB1B68E62B9F448DF1A276B0886DF192FDBD91@EX2010.hammerofgod.com> Date: Fri, 9 Sep 2011 17:03:13 +0000 From: "Thor (Hammer of God)" <thor@...merofgod.com> To: JT S <whytehorse@...il.com>, coderman <coderman@...il.com> Cc: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>, "Valdis.Kletnieks@...edu" <Valdis.Kletnieks@...edu> Subject: Re: Western Union Certificate Error >I personally would prefer that the browsers only trust keys that I have signed, >have low trust for keys signed by keys I have signed, and no trust for the rest. >I'd really like the ability to walk into western union or my bank or local google >office and sign their key as well as the ability to revoke my signature without >revoking my key. You have complete control over this - just remove the ones you want from the default collection of CAs in the Trusted Certificate Authority store. Well, not necessarily the intermediate authorities, but I'm sure you could figure it all out if you wanted to. t _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists