[ntp:questions] lists.ntp.org uses an invalid security certificate....
David J Taylor
david-taylor at blueyonder.not-this-part.nor-this.co.uk.invalid
Sun Sep 6 14:34:55 UTC 2009
"John Hasler" <john at dhh.gt.org> wrote in message
news:87ocpoffjl.fsf at thumper.dhh.gt.org...
> David writes:
>> It makes it difficult to take an discussion about "security" issues
>> seriously when ntp.org can't even get a "accepted" certificate.
> I hope you do not labor under the delusion that an "accepted"
> certificate provides any significant security beyond the session
> encryption provided by any https session. All it proves is that the
> site operators were able to write at least one check that didn't bounce.
> John Hasler
I hope not, John. It's just the impression it creates. I do wonder,
though, why even just reading a bug list should need https, but perhaps
that's Firefox's behaviour.
More information about the questions