1.2 KiB
1.2 KiB
layout | title | date |
---|---|---|
post | running on ssl | 08.09.2011 00:31 |
Even though the SSL and CA system is totally broken right now, I finally got my blog as well as my etherpad served over SSL:
My SSL certificate is signed by cacert (they approved me at last year's FrOSCon).
If you followed some of the latest news around the scene, you probably heard of the diginotar debacle. This should make clear how broken the system is and how unsecure these SSL certificates can be with all those CAs around.
For more information on the CA system and how it could be replaced by a more robust and secure infrastructure watch SSL And The Future Of Authenticity by Moxie Marlinspike from this year's Blackhat Conference.