[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Lynx-dev] TLS-"transport layer security" & LYNX

From: Thorsten Glaser
Subject: Re: [Lynx-dev] TLS-"transport layer security" & LYNX
Date: Sun, 29 Jul 2018 22:12:09 +0000 (UTC)

Mouse dixit:

>Because there is no technical difference between that and a cert for
>*.com or * there is no way to tell, when presented with the
>cert, whether everything covered by it is under common administration.

Except the asterisk does not match a dot.

So *.com would be valid for but not

CAs are a critical failure point anyway… I recall posting to this
list a suggestion that lynx could remember server certificates,
what others, a decade or so later, now call HPKP IIRC.

Stéphane, I actually don’t block Googlemail, they’re just too utterly
stupid to successfully deliver to me (or anyone else using Greylisting
and not whitelisting their ranges). Same for a few other providers such
as Hotmail. Some spammers (Yahoo) I do block.

reply via email to

[Prev in Thread] Current Thread [Next in Thread]