Re: [certid] user overrides
Michael Ströder <michael@stroeder.com> Tue, 15 June 2010 08:10 UTC
Return-Path: <michael@stroeder.com>
X-Original-To: certid@core3.amsl.com
Delivered-To: certid@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix)
with ESMTP id 203EF3A6A39 for <certid@core3.amsl.com>;
Tue, 15 Jun 2010 01:10:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.44
X-Spam-Level:
X-Spam-Status: No,
score=-0.44 tagged_above=-999 required=5 tests=[BAYES_20=-0.74,
MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP id pCdfO9kHQItX for
<certid@core3.amsl.com>; Tue, 15 Jun 2010 01:10:04 -0700 (PDT)
Received: from srv1.stroeder.com (srv1.stroeder.com [213.240.180.113]) by
core3.amsl.com (Postfix) with ESMTP id 0EB733A6883 for <certid@ietf.org>;
Tue, 15 Jun 2010 01:10:01 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by srv1.stroeder.com
(Postfix) with ESMTP id 38C9F4E10E for <certid@ietf.org>;
Tue, 15 Jun 2010 10:10:02 +0200 (CEST)
X-Virus-Scanned: amavisd-new at stroeder.com
Received: from srv1.stroeder.com ([127.0.0.1]) by localhost (srv1.stroeder.com
[127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Bs5M2W58Yhvj for
<certid@ietf.org>; Tue, 15 Jun 2010 10:10:00 +0200 (CEST)
Received: from [10.1.0.2] (unknown [10.1.0.2]) by srv1.stroeder.com (Postfix)
with ESMTP id 2ACF44E100 for <certid@ietf.org>;
Tue, 15 Jun 2010 10:09:59 +0200 (CEST)
Message-ID: <4C1714FD.3030202@stroeder.com>
Date: Tue, 15 Jun 2010 07:51:57 +0200
From: =?ISO-8859-1?Q?Michael_Str=F6der?= <michael@stroeder.com>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US;
rv:1.9.1.10) Gecko/20100504 Lightning/1.0b1 SeaMonkey/2.0.5
MIME-Version: 1.0
To: IETF cert-based identity <certid@ietf.org>
References: <4C104CC3.8070602@stpeter.im>
<4C10516B.1000400@stpeter.im> <8B0A9FCBB9832F43971E38010638454F03E7F1FAC4@SISPE7MB1.commscope.com> <4C12A6A5.9060404@stpeter.im>
<8B0A9FCBB9832F43971E38010638454F03E7F987C5@SISPE7MB1.commscope.com>
In-Reply-To: <8B0A9FCBB9832F43971E38010638454F03E7F987C5@SISPE7MB1.commscope.com>
X-Enigmail-Version: 1.0.1
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Subject: Re: [certid] user overrides
X-BeenThere: certid@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Representation and verification of identity in certificates
<certid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/certid>,
<mailto:certid-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/certid>
List-Post: <mailto:certid@ietf.org>
List-Help: <mailto:certid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/certid>,
<mailto:certid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Jun 2010 08:10:07 -0000
Thomson, Martin wrote: > Why is an identity mismatch any more forgivable than an unknown CA? The user might have knowledge about DNS aliases but not about the public key of the unknown CA. Not sure whether that should all be part of this BCP document though... Ciao, Michael.
- [certid] Fwd: [apps-discuss] draft-saintandre-tls… Peter Saint-Andre
- [certid] user overrides (was: Re: Fwd: [apps-disc… Peter Saint-Andre
- Re: [certid] user overrides (was: Re: Fwd: [apps-… Thomson, Martin
- Re: [certid] user overrides Peter Saint-Andre
- Re: [certid] user overrides Thomson, Martin
- Re: [certid] user overrides Michael Ströder