On Mon, Feb 22, 2010 at 10:05 PM, codeplay <[email protected]> wrote: > On Mon, Feb 22, 2010 at 3:06 PM, Cheng Renquan <[email protected]> wrote: >> On Thu, Feb 18, 2010 at 10:06 AM, Soh Kam Yung <[email protected]> >> > [...] >> > CNNIC's defenders respond that any CA could do such a thing [provide a >> yes, CNNIC definitely cannot be trusted, > > Can you show me the evidence?
If you had ever been living in China for a period, you would know its notorious history of all kinds evil: 1) mandatory software installation by code running in windows kernel mode; 2) DNS hijack, multiple times 3) spyware and advertisement injection, ... you can always find the evidence by google search "notorious CNNIC", http://en.wikipedia.org/wiki/CNNIC http://felixcat.net/2010/01/throw-out-cnnic/ http://minidr.com/archives/tag/cnnic http://www.360.cn/k-cnnic.html you can do investigation and find out that most Internet users well equipped with Internet knowledge don't like it, also don't trust CNNIC in root CA certificates, even if you live outside China, CNNIC in root certifcate would still be a security threat that keeps your firefox vulnerable to those malicious websites signed by CNNIC, _______________________________________________ LUGS Mailing list - [email protected] List FAQ: http://wiki.lugs.org.sg/LugsMailingListFaq Info page: http://www.lugs.org.sg/mailman/listinfo/slugnet To unsubscribe send an empty email to: [email protected]
