Re: 0.29.0 - PKCS12 Certificates Only?

From: Mukund <mukund_at_tessna.com>
Date: 2003-09-08 23:02:25 CEST

On Mon, Sep 08, 2003 at 05:00:26PM -0400, Brian Mathis wrote:
> Well, not the *very* objective, but one of them. You'll still get
> encrypted traffic on the wire. Yes, a man in the middle attack is still
> possible, but that takes much more effort than simply setting up tcpdump.

Encryption and authenticity go hand in hand. You implement authentication
first, then encryption. There is no such thing as SSL without proving
authenticity. Encrypted traffic without authenticity is meaningless. You
can just as well send your credit card details to amaz00n.com instead of
amazon.com without authentication, although your traffic is encrypted.

I'll get into this conversation when you are past setting up snake oil
security. I apologize if I sound rude.. not my intention. Read up.

-- 
Mukund
The very powerful and the very stupid have one thing in common.  Instead of
altering their views to fit the facts, they alter the facts to fit their
views ... which can be very uncomfortable if you happen to be one of the
facts that needs altering.
                -- Doctor Who, "Face of Evil"
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org

Received on Mon Sep 8 23:11:45 2003

This message: [ Message body ]
Next message: Mukund: "Re: 0.29.0 - PKCS12 Certificates Only?"
Previous message: e.huelsmann_at_gmx.net: "Re: Current Updated Revision Number"
In reply to: Brian Mathis: "Re: 0.29.0 - PKCS12 Certificates Only?"
Next in thread: Mukund: "Re: 0.29.0 - PKCS12 Certificates Only?"
Reply: Mukund: "Re: 0.29.0 - PKCS12 Certificates Only?"
Reply: Brian Mathis: "Re: 0.29.0 - PKCS12 Certificates Only?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]