[Summit] TLS s2s interconect hackfest
dave at cridland.net
Wed Jan 27 07:25:26 CST 2010
On Wed Jan 27 13:03:50 2010, Peter Saint-Andre wrote:
> On 1/27/10 6:00 AM, Dave Cridland wrote:
> > On Wed Jan 27 12:44:05 2010, Diana Cionoiu wrote:
> >> Hello,
> >> Is there ANYONE interested to test TLS s2s during the Friday
> > We can certainly do that.
> +1. This is a major gap in testing and deployment, perhaps because
> not visible to users.
Right, that's true. It's also very easy to get wrong in various weird
ways. (My favourite remains the case where you decide that the peer
you're connecting to doesn't have a valid certificate, and therefore
instead of using the EXTERNAL you're offered, you insist on doing
dialback to authenticate yourself.)
> > I can bring along a CA, too.
> Handy to have a CA in one's back pocket, eh? ;-)
Well, I'll make one on a laptop, actually, but yes.
Everyone needs a full X.500 infrastructure on their laptop.
Dave Cridland - mailto:dave at cridland.net - xmpp:dwd at dave.cridland.net
Infotrope Polymer - ACAP, IMAP, ESMTP, and Lemonade
More information about the Summit