[ProgSoc] HTTPS on www, webmail

Anand Kumria wildfire at progsoc.uts.edu.au
Fri Aug 5 22:22:04 EST 2011


Hi John,

It simply won't be possible via any decent registrar.

Any registrar who issues us progsoc.uts.edu.au is a registrar you shouldn't
trust.

Basically they issue the certificate to the first part zone cut point, so in
this case someone at uts.edu.au would need to request one on our behalf.

The whole CA model is basically broken. Each party has the wrong incentives.


 - CAs want to hand out as many certs as possible for the highest price.
 - DomainOps want to buy the cheapest cost at the highest validation
 - User want to buy securely and know they are talking to who they were the
last time

I was reading a good presentation on it yesterday but my google / history
skills seem to have eluded me momentarily.

A

On 5 August 2011 07:43, John Elliot <jj5 at jj5.net> wrote:

> On 5/08/2011 3:36 PM, James Ducker wrote:
>
>> It's issued by a trusted CA and everything! It feels so /professional./
>>
>
> In my mind to qualify as professional progsoc.uts.edu.au would need to be
> working too.
>
> Not a bad start though.
>
>
>
>
>
>
>
>
>
>
> ______________________________**_________________
> Progsoc mailing list
> Progsoc at progsoc.org
> http://progsoc.org/cgi-bin/**mailman/listinfo/progsoc<http://progsoc.org/cgi-bin/mailman/listinfo/progsoc>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://progsoc.org/pipermail/progsoc/attachments/20110805/45b0cb2b/attachment-0001.html>


More information about the Progsoc mailing list