Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- Date: Wed, 9 Sep 2009 07:09:43 +0900
- From: Curt Sampson <cjs@example.com>
- Subject: Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- References: <878wgzv45p.fsf@example.com> <4A9D0CDB.3040208@example.com> <4A9D1080.7010300@example.com> <4A9D187A.10001@example.com> <87r5uqt8np.fsf@example.com> <4A9EAE18.9030300@example.com> <8763c0u7kr.fsf@example.com> <4AA5D456.2090301@example.com> <20090908090440.GD8194@example.com> <4AA62389.8000003@example.com>
- User-agent: Mutt/1.5.18 (2008-05-17)
On 2009-09-08 18:27 +0900 (Tue), Edward Middleton wrote:
> With only a domain name check it doesn't tell you who the holders of the
> domain are. Without that information it is pretty difficult to assess
> the trustworthiness of the site.
It's easy to look up the holders of the domain in the whois database.
However, even with that information, it can be difficult to assess
the trustworthiness of a site. So here we see again a decision to do
what you can do consistently, and not do partially what you cannot do
completely.
The vital thing that the cert provides is that, once you've decided to trust
a particular certificate holder, you from that point on know that when you
return to the site, you are talking to that same certificate holder, or
someone to whom he's delgated that domain name.
(Actually, this is not quite true in that if your intervals between
visits are long enough, the domain could be allowed to expire, fall into
the hands of someone hostile, and they could have a new certificate
issued. On the other hand, that's arguably the fault of the original
holder of the domain name, and there are plenty of other security
mess-ups that the original holder could make that would result in
similar problems.)
cjs
--
Curt Sampson <cjs@example.com> +81 90 7737 2974
Functional programming in all senses of the word:
http://www.starling-software.com
- Follow-Ups:
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Edward Middleton
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- References:
- Re: [tlug] Anyone seen this gizmo yet?
- From: Stephen J. Turnbull
- Re: [tlug] Anyone seen this gizmo yet?
- From: Sotaro Kobayashi
- Re: [tlug] Anyone seen this gizmo yet?
- From: Godwin Stewart
- Re: [tlug] Anyone seen this gizmo yet?
- From: Sotaro Kobayashi
- [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Stephen J. Turnbull
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Edward Middleton
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Stephen J. Turnbull
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Edward Middleton
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Curt Sampson
- Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- From: Edward Middleton
- Re: [tlug] Anyone seen this gizmo yet?
- Prev by Date: Re: [tlug] router
- Next by Date: Re: [tlug] Tux is now in Tokyo ! who wants to get it ?
- Previous by thread: Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- Next by thread: Re: [tlug] System security and public policy [was: Anyone seen this gizmo yet?]
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |