Re: SSL for debian.org/security?
On Tue, 29 Oct 2013 10:32:26 -0200
Djones Boni <07ea86bb4e@gmail.com> wrote:
> On 29-10-2013 09:56, Celejar wrote:
> > The OP was asking for authentication, not encryption. Celejar
> Tor HS addresses are self authenticating (80 bits of entropy).
Okay, but the message I was replying to mentioned only encryption:
http://lists.debian.org/debian-security/2013/10/msg00033.html
> It is possible (and very hard) to create an alias but it is much better
> than clear text over http.
The question is not whether it's better than clear text over HTTP, but
whether it's better than SSL.
Celejar
Reply to: