Yep, makes sense. Like I told Benson, I wasn't exactly sure if the mirroring system were read only downstream of the Apache root sources (IOW, I thought we had more control then in reality we did).
BTW, if someone could point me to a document where this is described, that would certainly help me refer it to others in the future. Cheers, Chris On Jun 27, 2011, at 2:32 PM, Noel J. Bergman wrote: > Chris, > > This is related to why it also matters how you get and verify your browser. > If someone were to successfully distribute a build of Firefox or Chrome with > bogus root certs, they could potentially do a lot of damage. > > --- Noel > > > > --------------------------------------------------------------------- > To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org > For additional commands, e-mail: general-h...@incubator.apache.org > ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Chris Mattmann, Ph.D. Senior Computer Scientist NASA Jet Propulsion Laboratory Pasadena, CA 91109 USA Office: 171-266B, Mailstop: 171-246 Email: chris.a.mattm...@nasa.gov WWW: http://sunset.usc.edu/~mattmann/ ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Adjunct Assistant Professor, Computer Science Department University of Southern California, Los Angeles, CA 90089 USA ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ --------------------------------------------------------------------- To unsubscribe, e-mail: general-unsubscr...@incubator.apache.org For additional commands, e-mail: general-h...@incubator.apache.org
