Re: HTTPS everywhere!

To: debian-devel@lists.debian.org
Subject: Re: HTTPS everywhere!
From: Christoph Anton Mitterer <calestyo@scientia.net>
Date: Mon, 16 Jun 2014 19:54:40 +0200
Message-id: <[🔎] 1402941280.4787.76.camel@heisenberg.scientia.net>
In-reply-to: <[🔎] 87tx7q9enp.fsf@aexonyam.err.no>
References: <[🔎] 1402527988.4739.34.camel@heisenberg.scientia.net> <[🔎] 20140612085609.GA3826@jwilk.net> <[🔎] 1402594205.5066.97.camel@heisenberg.scientia.net> <[🔎] 87tx7q9enp.fsf@aexonyam.err.no>

On Thu, 2014-06-12 at 20:16 +0200, Tollef Fog Heen wrote: 
> > Supplying the Debian Root CA to people not using Debian could have been
> > easily done by a *single* site that uses a cert available in all
> > browsers... which offers the Debian Root CA for secure and "trusted"
> > download.
> 
> That's a nice theory.  It does not align particularly well with what
> happens in the real world.

Uhm... why not?

Anyway... it would be best if such Debian Root CA could be included in
major other distros as well... so even if it's not installed by
default... people from all distros would have an easy way to securely
retrieve such root CAs, as long as they trust their own distro.

Cheers,
Chris.

Attachment: smime.p7s
Description: S/MIME cryptographic signature

Reply to:

Follow-Ups:
- Re: HTTPS everywhere!
  - From: Luca Filipozzi <lfilipoz@debian.org>

References:
- holes in secure apt
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- HTTPS everywhere! (was: holes in secure apt)
  - From: Jakub Wilk <jwilk@debian.org>
- Re: HTTPS everywhere! (was: holes in secure apt)
  - From: Christoph Anton Mitterer <calestyo@scientia.net>
- Re: HTTPS everywhere!
  - From: Tollef Fog Heen <tfheen@err.no>

Prev by Date: Re: improving downloader packages (was: Re: holes in secure apt)
Next by Date: Re: holes in secure apt
Previous by thread: Re: HTTPS everywhere!
Next by thread: Re: HTTPS everywhere!
Index(es):
- Date
- Thread