On 29/12/14 07:26, Markus Sabadello wrote: > If we add that to fbx, all our SSL problems should go away, right? > No matter if we use subdomains or not..
Incidentally, i just stumbled upon a solution to the MITM vulnerability: https://developer.mozilla.org/en-US/docs/Web/Security/Public_Key_Pinning. With this and a compatible browser, the use of a CA should be secure, as long as you check the fingerprint of the certificate on first use. regards, ingo
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Freedombox-discuss mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/freedombox-discuss
