[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Gmail and SSL

Subject: Gmail and SSL
From: kmedcalf at dessus.com (Keith Medcalf)
Date: Sun, 30 Dec 2012 13:30:03 -0700

Your assertion that using "bought" certificates provides any security benefit whatsoever assumes facts not in evidence.

Given recent failures in this space I would posit that the requirement to use certificates purchased from entities "under the thumb" of government control, clearly motivated only by profit, and with highly questionable moral and ethical standards represents a huge increase in risk of passive attack and confidentiality failure where such rosk did not previously exist.

Sent from Samsung Mobile

-------- Original message --------
From: Jimmy Hess <mysidia at gmail.com> 
Date:  
To: Randy <nanog at afxr.net> 
Cc: NANOG list <nanog at nanog.org> 
Subject: Re: Gmail and SSL

Follow-Ups:
- Gmail and SSL
  - From: morrowc.lists at gmail.com (Christopher Morrow)
- Gmail and SSL
  - From: mysidia at gmail.com (Jimmy Hess)

Prev by Date: Gmail and SSL
Next by Date: Gmail and SSL
Previous by thread: Gmail and SSL
Next by thread: Gmail and SSL
Index(es):
- Date
- Thread