In article <[EMAIL PROTECTED]> [EMAIL PROTECTED] (David Woolley) writes: >In article <[EMAIL PROTECTED]>, [EMAIL PROTECTED] (Per Hedeland) wrote: > >> But there is obviously no way to establish that the claimed >> counter-signatory isn't totally faked by just looking at the certificate > >Just for clarification, I was assuming in that paragraph that the >certificate chain was good, i.e. the browser had a copy of one of >the certificates in the chain and it was marked good for the purpose >for which it was used.
>I think Per and I actually agree. Very much so (especially after the clarification:-) - I just thought that your paragraph could maybe be (mis)read as implying that the suggestion to "examine the self-signed certificate" would be meaningful somehow. --Per Hedeland [EMAIL PROTECTED] _______________________________________________ questions mailing list [email protected] https://lists.ntp.isc.org/mailman/listinfo/questions
