On 05/19/2012 09:44 PM, Kim Alvefur wrote:
On Sat 19 May 2012 07:00:13 PM CEST, Nick M. Daly wrote:
On Sat, 19 May 2012 15:45:23 +0200, Michael Rauch<[email protected]> wrote:
this is really cool! by exposing FreedomBuddy as a Tor Hidden Service
there's no DNS resolution involved for service discovery. to find a
service, the client only needs to know the public key or hash thereof,
which is the .onion address.
Precisely :)
would this work together with monkeysphere to connect the ssl-cert to
the gpg-cert and this way allowing verified HTTPS connections?
That's step two.
Has anyone looked into using PGP keys as SSL certificates?
Monkeysphere [0] can create a pgp-cert based on the an existing X.509
cert by extracting its RSA key.
There's a post on Stackoverflow [1] about doing it the other way around,
creating a X.509 cert based on a pgp-cert.
0: http://web.monkeysphere.info/doc/host-keys/
1:
http://stackoverflow.com/questions/4061319/is-it-possible-to-create-an-ssl-certificate-out-of-a-pgp-public-private-key
2:
https://svn.java.net/svn/sommer~svn/trunk/misc/FoafServer/pgpx509/src/net/java/dev/sommer/foafserver/utils/PgpX509Bridge.java
_______________________________________________
Freedombox-discuss mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/freedombox-discuss
