[ntp:questions] Re: 4.2.1-RC

Per Hedeland per at hedeland.org
Sat Mar 25 12:13:44 UTC 2006


In article <T1143285006 at djwhome.demon.co.uk> david at djwhome.demon.co.uk
(David Woolley) writes:
>In article <e034cv$5b$1 at hedeland.org>, per at hedeland.org (Per Hedeland) wrote:
>
>> But there is obviously no way to establish that the claimed
>> counter-signatory isn't totally faked by just looking at the certificate
>
>Just for clarification, I was assuming in that paragraph that the 
>certificate chain was good, i.e. the browser had a copy of one of
>the certificates in the chain and it was marked good for the purpose
>for which it was used.

>I think Per and I actually agree.

Very much so (especially after the clarification:-) - I just thought
that your paragraph could maybe be (mis)read as implying that the
suggestion to "examine the self-signed certificate" would be meaningful
somehow.

--Per Hedeland
per at hedeland.org




More information about the questions mailing list