[Standards] xmpp.net test SSL trust

Daniele Ricci daniele.athome at gmail.com
Thu Feb 6 09:50:28 UTC 2014


(I'm sorry what is the right list?)

I understand what you mean... maybe the test tool can be tuned so that
a CACert get less points than e.g. Verisign, but a score of zero is
very unkind :-) I mean there are desktop configurations that have
CACert installed (e.g. 99% of Linux distributions).

On Thu, Feb 6, 2014 at 10:45 AM, Dave Cridland <dave at cridland.net> wrote:
> On Thu, Feb 6, 2014 at 9:40 AM, Daniele Ricci <daniele.athome at gmail.com>
> wrote:
>>
>> Hello,
>> am I wrong or do I get that CACert [1] certificates are not trusted by
>> the test tool at xmpp.net?
>>
>> [1] http://www.cacert.org/
>
>
> Not that this is really the right list, but you're right.
>
> I believe Thijs wanted to mimic the "normal" desktop trust anchors (ie, CA
> selection), so that a fresh, ordinary user would have the same set of CAs on
> their machine.
>
> Whatever *we* might think of CACert, that seems a reasonable definition.
>
> Dave.



-- 
Daniele



More information about the Standards mailing list