On Sat, May 15, 2010 at 8:34 PM, Eray Aslan <eray.as...@caf.com.tr> wrote:
> Amen. PKI is a naive design and for all intents and purposes will > remain a pipe-dream. All security relationships that is worth anything > is bilateral and no trusted third party is willing to accept enough risk > to warrent full trust. > > Using public keys for auth is a good security model and the rest of x509 > certs is just unnecessary overhead. You might be interested in monkeysphere, which brings the PGP/GPG web of trust to SSH and HTTPS: http://monkeysphere.info/ -- bye, pabs http://wiki.debian.org/PaulWise -- To UNSUBSCRIBE, email to debian-devel-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/aanlktil4ip_aeaglheobhc190eu_rsmhe7z26amvd...@mail.gmail.com
