BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] [BLU/Officers] update instructions for key signing
- Subject: [Discuss] [BLU/Officers] update instructions for key signing
- From: bill.n1vux at gmail.com (Bill Ricker)
- Date: Wed, 19 Sep 2018 15:37:54 -0400
- In-reply-to: <sjmin32kiov.fsf@securerf.ihtfp.org>
- References: <CAPOg-Py6+yYCcEKNYESd73Vp+CMgSyM8htPtte8ZAj1t-VTJSg@mail.gmail.com> <CAPOg-PwcihOuHn_vmpUz14ncXqvnikUftp-8COt3_rVadVWgNQ@mail.gmail.com> <CAPOg-PzP9iRU1bn=bQdMF=k3BOOsuyWyUBUJfqSmDi5aWM25_w@mail.gmail.com> <CAPOg-Py+j5d3z6X8mrYJ+BGSc7=97k-ddub=3wPiYsd==uJwpA@mail.gmail.com> <CAAbKA3V_=5Hy=SwtZxM2JH1eZ7pTYzXPoX8LW--crkgpB6efQg@mail.gmail.com> <3f289390-7b71-6159-0f1f-8d532fe9ae33@horne.net> <20180917152743.a3eqdvpz54ksm4ma@randomstring.org> <CAAbKA3VNeoODn0C=gRuHLuS934Ezy+uhDkSxwDRtAgrkaf4Bpw@mail.gmail.com> <sjmin32kiov.fsf@securerf.ihtfp.org>
On Tue, Sep 18, 2018 at 10:02 AM Derek Atkins <warlord at mit.edu> wrote: > Bill Ricker <bill.n1vux at gmail.com> writes: > > > (b) closed intranet (no BYOD allowed) where one IT org controls both the > > desktops and the webservers, and you install the Corp private selfsigned > CA > > key into IT release of IE/Edge, FF, Chrome. > > The downside of this latter approach is that the IT org can then sign > certs for *ANY* other site and therefore intercept all HTTPS traffic > they wish to see. > If the IT / SEC group is competent to do the one, they're probably already doing the other! (And possibly consider themselves legally required to, to prevent exfiltration of sensitive data -- HIPAA, SARBOX, ...) -- Bill Ricker bill.n1vux at gmail.com https://www.linkedin.com/in/n1vux
- References:
- [Discuss] [BLU/Officers] update instructions for key signing
- From: bill at horne.net (Bill Horne)
- [Discuss] [BLU/Officers] update instructions for key signing
- From: dsr at randomstring.org (Dan Ritter)
- [Discuss] [BLU/Officers] update instructions for key signing
- From: bill.n1vux at gmail.com (Bill Ricker)
- [Discuss] [BLU/Officers] update instructions for key signing
- From: warlord at MIT.EDU (Derek Atkins)
- [Discuss] [BLU/Officers] update instructions for key signing
- Prev by Date: [Discuss] Geeqie problem with thumbnail checkboxes
- Next by Date: [Discuss] Fwd: Quantum Crypto redux Re: Boston Linux Meeting ... Crypto News, plus ...
- Previous by thread: [Discuss] [BLU/Officers] update instructions for key signing
- Next by thread: [Discuss] Boston Linux Meeting reminder, tomorrow Wednesday, September 19, 2018 - Crypto News, plus our annual PGP/GnuPG Key-Signing Party
- Index(es):