[TriLUG] [Maybe OT]: SSL certificates
Tanner Lovelace
lovelace at wayfarer.org
Fri Sep 5 11:19:44 EDT 2003
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Jon Carnes wrote:
| Cool beans! Do you do sign other folks web/mail certs? (Assuming they
| are members in good standing, of course)
|
| It would be good to have an Open Source CA for use in the community.
Honestly, this is the first time the question has come up. I don't
have any fundamental objections to signing other web/mail certs, but
we should probably have a good discussion about it beforehand.
One thing I just thought of was something someone suggested to me
today. Right now, the CA is just on moya.trilug.org. If, for some
reason, moya was compromised, that could be bad news for the CA.
The suggestion was that some of us who are well connected in the
TriLUG web of trust should sign the TriLUG CA certificate. Hmm..
thinking that through more, that would help people decide that
the CA was good, but if there was a compromise the CA could still be
used to sign someone's cert, so perhaps we should move the CA off
a computer that's connected to the net?
I'd like to hear what other people have to say.
Cheers,
Tanner
- --
Tanner Lovelace | lovelace(at)wayfarer.org | http://wtl.wayfarer.org/
- --*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--
GPG Fingerprint = A66C 8660 924F 5F8C 71DA BDD0 CE09 4F8E DE76 39D4
GPG Key can be found at http://wtl.wayfarer.org/lovelace.gpg.asc
- --*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--*--
"Junk food is considered part of the vegetable food group, because it
comes from a plant. A big chemical plant. In New Jersey." - Kludge Dorsey
-----BEGIN PGP SIGNATURE-----
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQE/WKmOzglPjt52OdQRAnHNAJ9uqRrSTzvOgaKcNSWsuEFmZzOT6gCdHnAD
ZK8W4/8uyAHws1d9TSMO3oc=
=j5mH
-----END PGP SIGNATURE-----
More information about the TriLUG
mailing list