Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.ar.al/@aral" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>aral</span></a></span> <span class="h-card" translate="no"><a href="https://ec.social-network.europa.eu/@EUCommission" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>EUCommission</span></a></span> <span class="h-card" translate="no"><a href="https://social.nlnet.nl/@nlnet" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>nlnet</span></a></span> call me weird but the developments of <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> vs. <span class="h-card" translate="no"><a href="https://mastodon.social/@cacert" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cacert</span></a></span> shows everything wrong with the way <a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a> works.</p><p>We would've had a superior alternative to <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> if <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GAFAMs</span></a> weren't able or even allowed to cockblock <a href="https://infosec.space/tags/CACert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CACert</span></a> by refusing to import it's <em>ROOT-CA</em>, whilst every commercial <a href="https://infosec.space/tags/CA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CA</span></a> gets their keys imported, no matter how shit they are or that they are essentially a hostile state actor!</p>
Recent searches
No recent searches
Search options
Only available when logged in.
sigmoid.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A social space for people researching, working with, or just interested in AI!
Administered by:
Server stats:
654active users
sigmoid.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.8
#cacert
0 posts · 0 participants · 0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://ciclista.social/@thomas" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>thomas</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@BjornW" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>BjornW</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> we had that one (minus LE involvement).</p><ul><li>It was called <span class="h-card" translate="no"><a href="https://mastodon.social/@cacert" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cacert</span></a></span> / <a href="https://infosec.space/tags/CACert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CACert</span></a>!</li></ul><p>It merely got cockblocked by <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GAFAMs</span></a> who refused to accept it as <a href="https://infosec.space/tags/CA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CA</span></a>...</p>
Juergen M. Bruckner<p><span class="h-card" translate="no"><a href="https://chaos.social/@leyrer" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>leyrer</span></a></span> <br>Ich sagte nicht, dass er tatsächlich "vertrauenswürdig" ist. Aber Faktum ist, dass es diesen und zwei weitere "Vertrauensdiensteanbieter" in Österreich gibt. Und es bieten alle Drei auch S/MIME kompatible Zertifikate an.</p><p>Aber Du hast im Grunde schon recht, da geniesst bei mir <a href="https://mastodon.bruckner.email/tags/CAcert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CAcert</span></a> höheres Vertrauen als die drei zusammen.</p>
Axel ⌨🐧🐪🚴😷 | R.I.P Natenom<p>Just got a mail notification that <a href="https://chaos.social/tags/CAcert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CAcert</span></a> relocated its association from Australia to <a href="https://chaos.social/tags/Switzerland" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Switzerland</span></a>, namely to <a href="https://chaos.social/tags/Geneva" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Geneva</span></a>.</p><p>Wasn't aware that they're still alive and active after all the degradation due to expired and cryptographically outdated root certificates, etc.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://veganism.social/@MichalBryxi" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>MichalBryxi</span></a></span> yeah...</p><p>As much as I'm still angry at <a href="https://infosec.space/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Microsoft</span></a>, <a href="https://infosec.space/tags/Apple" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Apple</span></a> and <a href="https://infosec.space/tags/Mozilla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mozilla</span></a> for blocking <a href="https://infosec.space/tags/CACert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CACert</span></a> to this day, <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> is a net positive.</p><ul><li>Tho I've had to deal with more <em>"serious business"</em> where that wouldn't cut it. <a href="https://infosec.space/tags/PCIDSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PCIDSS</span></a> <em>demands</em> <a href="https://infosec.space/tags/EV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EV</span></a>-<a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a> for <a href="https://infosec.space/tags/PaymentProcessors" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PaymentProcessors</span></a> and that <em>is</em> a process in that they actually do <a href="https://infosec.space/tags/KYC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KYC</span></a> a company and <a href="https://infosec.space/tags/ID" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ID</span></a> <a href="https://infosec.space/tags/CEO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CEO</span></a> & <a href="https://infosec.space/tags/CFO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CFO</span></a> (cuz I was in charge of updating said cert and had to wait for that to complete)...</li></ul><p>And for the upper triple digits that cert costs per year, the process went quite fast and it took like 5 mins tops.</p><ul><li>Almost as if <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> killed the <em>"low end"</em> market...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://hackers.town/@drwho" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>drwho</span></a></span> Shit like this makes me hate not just <a href="https://infosec.space/tags/snap" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>snap</span></a> but <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> because that's more code than the entire backend for <span class="h-card" translate="no"><a href="https://mastodon.social/@cacert" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>cacert</span></a></span> ...</p><ul><li>Seriously, there's no valid reason for <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> to take up more space than the <code>acme.sh</code> & <a href="https://infosec.space/tags/CertBot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CertBot</span></a> scripts they made <em>AND</em> certainly not more than the <a href="https://infosec.space/tags/API" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>API</span></a> for <a href="https://infosec.space/tags/CAcert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CAcert</span></a> back in it's days...</li></ul><p>I think there needs to be more and harder pushes for <a href="https://infosec.space/tags/FrugalComputing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FrugalComputing</span></a> because there's no valid reason they basically shove an entire <a href="https://infosec.space/tags/OS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OS</span></a> onto an existing one...</p><ul><li>And even if there was there shure as hell is none for something beyond the ~ 4 MB that <a href="https://infosec.space/tags/mkroot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mkroot</span></a> as a reference implementation of <a href="https://infosec.space/tags/toybox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>toybox</span></a> requires...</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mstdn.social/@DeltaWye" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>DeltaWye</span></a></span> TBH, using a <a href="https://infosec.space/tags/VPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VPN</span></a>.is a cheap and old <a href="https://infosec.space/tags/Ghettohack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ghettohack</span></a> that had it's right to exist before <a href="https://infosec.space/tags/CAcert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CAcert</span></a>, <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> and at a time where <a href="https://infosec.space/tags/EV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>EV</span></a>-<a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a> certs we 4-5 digits <em>before</em> taxes but there are reasons this isn't compliant to <a href="https://infosec.space/tags/PCIDSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PCIDSS</span></a> anymore...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mstdn.social/@rysiek" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>rysiek</span></a></span> the only thing that pisses me off re: <a href="https://infosec.space/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LetsEncrypt</span></a> is tuat they basically got <a href="https://infosec.space/tags/VC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VC</span></a>-<a href="https://infosec.space/tags/TechBro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechBro</span></a> <a href="https://infosec.space/tags/FastLane" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FastLane</span></a> in regards to acceptance whilst <a href="https://infosec.space/tags/CaCert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CaCert</span></a> got <a href="https://infosec.space/tags/Cockblocked" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cockblocked</span></a> by <a href="https://infosec.space/tags/GAFAMs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GAFAMs</span></a> all day despite doing actual <a href="https://infosec.space/tags/DueDiligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DueDiligence</span></a> re: who gets a <a href="https://infosec.space/tags/certificate" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certificate</span></a>. </p><p>But better <span class="h-card" translate="no"><a href="https://infosec.exchange/@letsencrypt" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>letsencrypt</span></a></span> than no <a href="https://infosec.space/tags/SSL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SSL</span></a>, even tho I think <a href="https://infosec.space/tags/X509" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>X509</span></a> is bad and ibstead we should've <a href="https://infosec.space/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a>-based <a href="https://infosec.space/tags/encryptioncfor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryptioncfor</span></a> everything...</p>
Colin Cogle 🔵<p><span class="h-card" translate="no"><a href="https://fosstodon.org/@wez" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>wez</span></a></span> <span class="h-card" translate="no"><a href="https://aus.social/@voltagex" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>voltagex</span></a></span> I purchased a code signing certificate from SignMyCode.com and it’s worked great. Though I bought it before the HSM requirements went into place, I don’t automate anything with it — though it’s a tempting idea. </p><p>There’s always <a href="https://mastodon.social/tags/CAcert" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CAcert</span></a>, but they’ll probably never be globally trusted.</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload