On Sat, May 15, 2010 at 8:34 PM, Eray Aslan <[email protected]> wrote:
> Amen. PKI is a naive design and for all intents and purposes will > remain a pipe-dream. All security relationships that is worth anything > is bilateral and no trusted third party is willing to accept enough risk > to warrent full trust. > > Using public keys for auth is a good security model and the rest of x509 > certs is just unnecessary overhead. You might be interested in monkeysphere, which brings the PGP/GPG web of trust to SSH and HTTPS: http://monkeysphere.info/ -- bye, pabs http://wiki.debian.org/PaulWise -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected] Archive: http://lists.debian.org/[email protected]
