[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: 0.29.0 - PKCS12 Certificates Only?

From: Mukund <mukund_at_tessna.com>
Date: 2003-09-08 23:02:25 CEST

On Mon, Sep 08, 2003 at 05:00:26PM -0400, Brian Mathis wrote:
> Well, not the *very* objective, but one of them. You'll still get
> encrypted traffic on the wire. Yes, a man in the middle attack is still
> possible, but that takes much more effort than simply setting up tcpdump.

Encryption and authenticity go hand in hand. You implement authentication
first, then encryption. There is no such thing as SSL without proving
authenticity. Encrypted traffic without authenticity is meaningless. You
can just as well send your credit card details to amaz00n.com instead of
amazon.com without authentication, although your traffic is encrypted.

I'll get into this conversation when you are past setting up snake oil
security. I apologize if I sound rude.. not my intention. Read up.

The very powerful and the very stupid have one thing in common.  Instead of
altering their views to fit the facts, they alter the facts to fit their
views ... which can be very uncomfortable if you happen to be one of the
facts that needs altering.
                -- Doctor Who, "Face of Evil"
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Mon Sep 8 23:11:45 2003

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.