Rant mode: I hate utter morons who work in IT

We have secure DNS now which in theory allows the browsers to completely bypass the CAs (by simply storing keys in the DNS records). Why don't Mozilla and Google get together, introduce a source authentication based on secure DNS, run that for a while and then deprecate the whole bloody corrupt designed by the NSA CA system?
 
dZeus said:
Absolutely true. However, I found the rant against not properly configuring a certificate in the same post as talking about a wildcard certificate had some comic value.
Click to expand...

The mention of a wildcard cert was to demonstrate how cheap a certificate is, not as a meaningful indicator of what they should do.

And since the wildcard cert is A: stored in a quite secure location, B: is accessible by a total of two people in the enterprise, and C: isn't linked to our PKI environment, I really am not worried about it.
 
You must log in or register to reply here.

Similar threads

S
Point light shadows work wrong, how can I debug it?
Replies
2
Views
581
JoeJ
J
homerdog
gmail, yahoo, maybe others requiring DKIM?
Replies
8
Views
1K
homerdog
homerdog
B
How do "lead platforms" work?
Replies
13
Views
2K
Shifty Geezer
Shifty Geezer
S
I wrote a fantasy book what should I do with it?
Replies
1
Views
472
Bludd
B
D
RTX Video HDR modded to work in games, RTX Game HDR?
Replies
7
Views
944
DegustatoR
D
Back
Top