[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[Freedombox-discuss] FOAF developers taking FreedomBox into their equation

On Fri, Mar 11, 2011 at 12:00:06PM -0500, Daniel Kahn Gillmor wrote:
>On 03/11/2011 05:22 AM, Jonas Smedegaard wrote:
>>> (a) infinite recursion, in the case where the web server's cert 
>>> itself contains a WebID-style URI, or
>> It is only infinite if we allow it to be.  I suspect resolvers of 
>> classical (flawed!) hierarchical SSL/TLS chained certs also put a 
>> limit on the amount of intermediary certificates before reaching the 
>> root is allowed before giving up.
>> Similarly I imagine we can decide (despite the protocol itself having 
>> no such limit) to not _bother_ resolve trust chains longer that e.g. 
>> 3 levels - or "hops" or "degrees" in some other lingo.
>I don't think we're talking about the same infinite recursion here.  
>But i clearly seem to be having difficulty explaining this point in a 
>comprehensible way. :/ Perhaps someone else who sees it can take a stab 
>at clarifying?

Heh, I am pretty sure it is me being thick-headed here.

Sorry if having exhausted you :-(

  - Jonas

  * Jonas Smedegaard - idealist & Internet-arkitekt
  * Tlf.: +45 40843136  Website: http://dr.jones.dk/

  [x] quote me freely  [ ] ask before reusing  [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20110311/cee63fa0/attachment.pgp>

Reply to: