[jdev] Re: TLS and self-signed certs
Peter Saint-Andre
stpeter at jabber.org
Thu Nov 18 15:29:54 CST 2004
In article <3eb0429d041118100732e53858 at mail.gmail.com>,
David Waite <dwaite at gmail.com> wrote:
> > One man's trusted body is another man's corruptable agency.
> Nothing can be done without trust. We are using Verisign today as a
> trusted body for providing correct DNS records and references.
Shyeah, speaking of corruptible agencies. ;-)
I'm not saying that having a "CA" or server registry for the Jabber
network would result in the establishment of body that could be trusted
for all time in all instances. And I tend to agree with Neil that it's
foolish to expect such a result. But at least it would be a body that
*we* control (unlike Verisign or even something like CAcert).
Well, I will be out of town for the next ~10 days, so don't expect any
proposals from me on this soon....
Peter
More information about the JDev
mailing list