[svlug] FYI for all those who don't read slashdot

J C Lawrence claw at kanga.nu
Tue Nov 18 15:38:55 PST 2014


On 11/18/2014 03:28 PM, Marc MERLIN wrote:
> Your point is valid, but even a self signed certificate adds some 
> security by simply making the traffic not possible to snoop by others. 
> An attacker now has to launch a man in the middle against you which is 
> of course possible, but considerably more effort than just listening 
> passively. 
Indeed; data security and identity of end-points are mostly orthogonal 
concerns.  What I'd like to see discussed more in this program is some 
sort of scalar of identity strength rather than the all-or-nothing we 
have now.

-- JCL




More information about the svlug mailing list