Re: HTTPS everywhere!

To: debian-devel@lists.debian.org
Subject: Re: HTTPS everywhere!
From: Tollef Fog Heen <tfheen@err.no>
Date: Sat, 21 Jun 2014 16:43:34 +0200
Message-id: <[🔎] 87oaxmjpbd.fsf@aexonyam.err.no>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 1403300549.4386.70.camel@heisenberg.scientia.net> (Christoph Anton Mitterer's message of "Fri, 20 Jun 2014 23:42:29 +0200")
References: <[🔎] 1402527988.4739.34.camel@heisenberg.scientia.net> <[🔎] 20140612085609.GA3826@jwilk.net> <[🔎] 1402594205.5066.97.camel@heisenberg.scientia.net> <[🔎] 87tx7q9enp.fsf@aexonyam.err.no> <[🔎] 53A032AB.1050802@debian.org> <[🔎] 20140618130058.GA17973@ypig.lip.ens-lyon.fr> <[🔎] 877g4edu77.fsf@windlord.stanford.edu> <[🔎] 1403300549.4386.70.camel@heisenberg.scientia.net>

]] Christoph Anton Mitterer 

> And if your concern is that a Debian CA could be used to forge
> certificates for non-Debian stuff... given that we have >150 root certs
> in the Mozilla bundle... many of them already completely untrustworthy
> and many of them probably introducing intermediate CAs which are even
> less trustworthy... I wouldn't worry a lot here.

If they are completely untrustworthy, I'd like to see bugs with
documentation for that statement being filed so we can fix it.

-- 
Tollef Fog Heen
UNIX is user friendly, it's just picky about who its friends are

Reply to:

References:
- holes in secure apt
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- HTTPS everywhere! (was: holes in secure apt)
  - From: Jakub Wilk <jwilk@debian.org>
- Re: HTTPS everywhere! (was: holes in secure apt)
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: HTTPS everywhere!
  - From: Tollef Fog Heen <tfheen@err.no>
- Re: HTTPS everywhere!
  - From: Simon McVittie <smcv@debian.org>
- Re: HTTPS everywhere!
  - From: Vincent Lefevre <vincent@vinc17.net>
- Re: HTTPS everywhere!
  - From: Russ Allbery <rra@debian.org>
- Re: HTTPS everywhere!
  - From: Christoph Anton Mitterer <calestyo@scientia.net>

Prev by Date: Re: HTTPS everywhere!
Next by Date: Re: HTTPS everywhere!
Previous by thread: Re: HTTPS everywhere!
Next by thread: Re: holes in secure apt
Index(es):
- Date
- Thread