[sf-lug] SF-LUG & SSL/TLS: now proper certs on SF-LUG sites thanks to https://letsencrypt.org/ :-)
Daniel Gimpelevich
daniel at gimpelevich.san-francisco.ca.us
Wed Dec 9 20:08:19 PST 2015
On Wed, 2015-12-09 at 18:43 -0800, Rick Moen wrote:
> Quoting Michael Paoli (Michael.Paoli at cal.berkeley.edu):
>
> > One may wish to note:
> >
> > Not (yet?) included: list host: linuxmafia.com - though it has SSL/TLS,
> > it doesn't yet have valid recognized CA signed cert (unless you
> > recognize and trust the linuxmafia.com certificate authority ;-)).
>
> I do. linuxmafia.com is the most awesome CA I know of, in fact, and the
> only one in which I have implicit faith.
>
> On some other occasion, we might wish to have a discussion about just
> how broken the CA model is, why it gives no assurance whatsoever, and
> what a sensible person might use instead.
>
> (Greetings from the ocean between Îles des Saintes, Guadeloupe, and
> Antigua.)
>
>
> _______________________________________________
> sf-lug mailing list
> sf-lug at linuxmafia.com
> http://linuxmafia.com/mailman/listinfo/sf-lug
> Information about SF-LUG is at http://www.sf-lug.org/
Yes, the CA model is broken, but it has the full trust of all
e-commerce, and that's just the tip of the iceberg. This page is a good
read, especially all the comments:
https://blog.archive.org/2015/11/24/difficult-times-at-our-credit-union/
More information about the sf-lug
mailing list