[Freedombox-discuss] some thoughts on URI namespaces
Ingo Stock
mail at ingostock.de
Tue Mar 24 22:12:42 UTC 2015
On 29/12/14 07:26, Markus Sabadello wrote:
> If we add that to fbx, all our SSL problems should go away, right?
> No matter if we use subdomains or not..
Incidentally, i just stumbled upon a solution to the MITM vulnerability:
https://developer.mozilla.org/en-US/docs/Web/Security/Public_Key_Pinning.
With this and a compatible browser, the use of a CA should be secure, as
long as you check the fingerprint of the certificate on first use.
regards, ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20150324/d6471562/attachment.sig>
More information about the Freedombox-discuss
mailing list