Dailydave mailing list archives

Re: The ides of March

From: dan () geer org
Date: Mon, 28 Mar 2011 14:43:36 -0400


The most telling part of the certificate fraud story is that
the issuers and the browser manufacturers solve the problem
by hard coding the broken certs into the browsers.  They do
not rely on CRLs.  They do not rely on OCSP.

Think about that for a moment...

--dan

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave

Current thread:

The ides of March dave (Mar 28)
- Re: The ides of March dan (Mar 28)