[cabfpub] .onion proposal

Eddy Nigg eddy_nigg at startcom.org
Wed Nov 19 22:14:16 UTC 2014


On 11/19/2014 11:27 PM, Brian Smith wrote:
> Is it really necessary to revoke the facebookcorewwwi.onion certificate?

Well....any half-serious CA should know that ANYBODY can get a 
certificate for exactly this host name provided they A) issue still 
certificates for such (internal) host names and B) also allow the use 
high-profile names and brands in the host names for others than the 
actually name/brand owners.

Unfortunately I must assume that there are CAs that still do exactly 
both of that.

-- 
Regards
Signer: 	Eddy Nigg, COO/CTO
	StartCom Ltd. <http://www.startcom.org>
XMPP: 	startcom at startcom.org <xmpp:startcom at startcom.org>
Blog: 	Join the Revolution! <http://blog.startcom.org>
Twitter: 	Follow Me <http://twitter.com/eddy_nigg>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cabforum.org/pipermail/public/attachments/20141120/58afaf1e/attachment-0003.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4313 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.cabforum.org/pipermail/public/attachments/20141120/58afaf1e/attachment-0001.p7s>


More information about the Public mailing list