Re: tlsa for smtp to @bugs.debian.org

To: debian-devel@lists.debian.org
Cc: debian-devel@lists.debian.org
Subject: Re: tlsa for smtp to @bugs.debian.org
From: Paul Wise <pabs@debian.org>
Date: Fri, 13 Sep 2013 23:31:38 +0200
Message-id: <[🔎] CAKTje6EP4qHAYqwBKeg-wQ9WYSdsaN85Avx3eEqHwSXt=oRtdQ@mail.gmail.com>
In-reply-to: <[🔎] 20130913205106.GA7721@roeckx.be>
References: <[🔎] m3hadq7v5s.fsf@carbon.jhcloos.org> <[🔎] m3bo3y5zno.fsf@carbon.jhcloos.org> <[🔎] 87txhq8s9s.fsf@qurzaw.varnish-software.com> <[🔎] 20130913102803.GB31162@bongo.bofh.it> <[🔎] m3hado4zos.fsf@carbon.jhcloos.org> <[🔎] 20130913205106.GA7721@roeckx.be>

On Fri, Sep 13, 2013 at 10:51 PM, Kurt Roeckx wrote:

> A self-signed cert's signature algorithm really isn't that
> important.  You either trust that cert or you don't.

Surely this work would apply to self-signed certs too?

http://www.win.tue.nl/hashclash/rogue-ca/

-- 
bye,
pabs

http://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: tlsa for smtp to @bugs.debian.org
  - From: Kurt Roeckx <kurt@roeckx.be>

References:
- tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: tlsa for smtp to @bugs.debian.org
  - From: md@Linux.IT (Marco d'Itri)
- Re: tlsa for smtp to @bugs.debian.org
  - From: James Cloos <cloos@jhcloos.com>
- Re: tlsa for smtp to @bugs.debian.org
  - From: Kurt Roeckx <kurt@roeckx.be>

Prev by Date: Re: tlsa for smtp to @bugs.debian.org
Next by Date: Re: tlsa for smtp to @bugs.debian.org
Previous by thread: Re: tlsa for smtp to @bugs.debian.org
Next by thread: Re: tlsa for smtp to @bugs.debian.org
Index(es):
- Date
- Thread