Re: SSL for debian.org/security?

Subject: Re: SSL for debian.org/security?

From: Mike Mestnik <cheako@mikemestnik.net>

Date: Mon, 11 Nov 2013 16:48:36 -0600

Message-id: <[🔎] CAF8px56hAkiE8_GiV=jr0AWiNdfhUF-x7-7oeCwe5VGGT1M_cA@mail.gmail.com>

In-reply-to: <526F855D.1080507@gmail.com>

References: <CAAy1gkeUt_jr0uDt0B=HdnAZnmmHDqygrwgYg4dU7X9zjVUrSA@mail.gmail.com> <526F7FDF.7030601@tightwax.com> <CAM5XQnxCxogD4JMaqyS27zzsorFZ-G8Dsa_71sABGFQHChmrag@mail.gmail.com> <526F855D.1080507@gmail.com>

I don't see how this is relevant? Obviously if hardware is seized then the owners no longer have control. If you have suggestions as to how to secure hardware that's great, but if you just want to point out that "Nothing can be done." That's not helpful.

On Tue, Oct 29, 2013 at 4:52 AM, Tormen <my.nl.abos@gmail.com> wrote:

On 29/10/13 10:44, Jordon Bedwell wrote:
> On Tue, Oct 29, 2013 at 4:29 AM, Nikolay Kubarelov <niko@tightwax.com> wrote:
>> I would use Tor hidden service instead of SSL.
> Wait: What? Can't tell if serious.

And then again:
http://yro.slashdot.org/story/13/08/04/2054208/half-of-tor-sites-compromised-including-tormail
^^

--
To UNSUBSCRIBE, email to debian-security-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Archive: http://lists.debian.org/526F855D.1080507@gmail.com

Reply to:

Follow-Ups:

Re: SSL for debian.org/security?
- From: Jérémie Marguerie <jeremie@marguerie.org>