From: Victor Duchovni (Victor.Duchovnimorganstanley.com)
Date: Mon May 19 2008 - 13:16:34 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, May 19, 2008 at 12:38:58PM -0400, Jorey Bump wrote:

> I set up a CA with the full intention of installing the root certificate
> in our clients, until I realized that it would be trivial for certain
> types of support staff to create a man-in-the-middle attack. It seems to
> me that blindly trusting a root CA has its share of risks, as well.

You have to trust something. Ideally, you trust only the things you must
trust, but that set is never empty.

--
        Viktor.

Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.

To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:
<mailto:majordomopostfix.org?body=unsubscribe%20postfix-users>

If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]