I strongly agree and i address this problem in my software (and i guess so should everyone)
On Mon, Sep 27, 2010 at 03:48:26PM +0200, Martin Rex wrote: > > Therefore having server-id-check unconditionally and silently override > "pinned" server certs with server-certs that chain to one of the ~100 > trust anchors preconfigured by the software supplier is a significant > security problem. > _______________________________________________ certid mailing list [email protected] https://www.ietf.org/mailman/listinfo/certid
