[Freedombox-discuss] CAs and cipher suites for cautious servers like FreedomBox
Jonas Smedegaard
dr at jones.dk
Fri Sep 13 23:49:33 UTC 2013
Quoting Sandy Harris (2013-09-14 01:09:09)
> Jonas Smedegaard <dr at jones.dk> wrote:
>
> > Would be nice if those knowledgeable about crypto could propose a
> > shortlist of purposes, and corresponding CAs and cipher suites.
>
> I see no reason offhand for a Box to trust any CA. That is a problem
> for the browsers, not a server.
For servers that purely "serves" I agree, but not so sure for e.g.
federated services like XMPP. Or an aggregation service like tt-rss.
>> Anyone knowledgeable about crypto that can help out?
>
> See also old discussion in this thread, and likely elsewhere too:
> http://lists.alioth.debian.org/pipermail/freedombox-discuss/2011-April/001439.html
Ah, yes - I remember that post of yours. A good one.
Thanks for your input.
- Jonas
--
* Jonas Smedegaard - idealist & Internet-arkitekt
* Tlf.: +45 40843136 Website: http://dr.jones.dk/
[x] quote me freely [ ] ask before reusing [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20130914/e3813fd9/attachment.sig>
More information about the Freedombox-discuss
mailing list