Full Disclosure mailing list archives

Re: Expired certificate

From: Dan Kaminsky <dan () doxpara com>
Date: Sat, 24 Jul 2010 19:11:17 -0400

Unfortunately, this approach (while being quite feasible from the

technical POV) appears to be incompatible with the business model of
existing CAs.


Everyone loves blaming the business guys.  Nope.  When it comes to X.509,
we nerds blew it.If you have got 500 servers that need renewed certificates
then you have.

...(alot of work ahead of you.)

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

Re: Expired certificate, (continued)
- - - Re: Expired certificate Marsh Ray (Jul 20)
    - Re: Expired certificate Dan Kaminsky (Jul 22)
    - Re: Expired certificate Marsh Ray (Jul 22)
    - Re: Expired certificate Dan Kaminsky (Jul 22)
    - Re: Expired certificate Marsh Ray (Jul 22)
    - Re: Expired certificate bk (Jul 23)
    - Re: Expired certificate Meadow (Jul 23)
    - Re: Expired certificate Marsh Ray (Jul 24)
    - Re: Expired certificate Pavel Kankovsky (Jul 24)
    - Re: Expired certificate Dan Kaminsky (Jul 24)
    - Re: Expired certificate Dan Kaminsky (Jul 24)
    - Re: Expired certificate Pavel Kankovsky (Jul 25)
    - Re: Expired certificate Dan Kaminsky (Jul 25)
    - Re: Expired certificate Marsh Ray (Jul 26)