Re: [OT] Re: Open then gates
On Sat, May 15, 2010 at 8:34 PM, Eray Aslan <eray.aslan@caf.com.tr> wrote:
> Amen. PKI is a naive design and for all intents and purposes will
> remain a pipe-dream. All security relationships that is worth anything
> is bilateral and no trusted third party is willing to accept enough risk
> to warrent full trust.
>
> Using public keys for auth is a good security model and the rest of x509
> certs is just unnecessary overhead.
You might be interested in monkeysphere, which brings the PGP/GPG web
of trust to SSH and HTTPS:
http://monkeysphere.info/
--
bye,
pabs
http://wiki.debian.org/PaulWise
Reply to: