[Freedombox-discuss] CAs and cipher suites for cautious servers like FreedomBox

Jonas Smedegaard dr at jones.dk
Fri Sep 13 23:49:33 UTC 2013


Quoting Sandy Harris (2013-09-14 01:09:09)
> Jonas Smedegaard <dr at jones.dk> wrote:
> 
> > Would be nice if those knowledgeable about crypto could propose a 
> > shortlist of purposes, and corresponding CAs and cipher suites.
> 
> I see no reason offhand for a Box to trust any CA. That is a problem 
> for the browsers, not a server.

For servers that purely "serves" I agree, but not so sure for e.g. 
federated services like XMPP.  Or an aggregation service like tt-rss.


>> Anyone knowledgeable about crypto that can help out?
> 
> See also old discussion in this thread, and likely elsewhere too: 
> http://lists.alioth.debian.org/pipermail/freedombox-discuss/2011-April/001439.html

Ah, yes - I remember that post of yours.  A good one.

Thanks for your input.


 - Jonas

-- 
 * Jonas Smedegaard - idealist & Internet-arkitekt
 * Tlf.: +45 40843136  Website: http://dr.jones.dk/

 [x] quote me freely  [ ] ask before reusing  [ ] keep private
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20130914/e3813fd9/attachment.sig>


More information about the Freedombox-discuss mailing list