Jean-Marc Desperrier wrote, On 2009-02-23 04:01: > Nelson and everyone else not knowing the details of this : > The problem is solved not at the CA level, but at the registry/TLD level.
I think you mean that IF it were solved, the solution would be at ... But I think it is evident that it is NOT solved, or we wouldn't be discussing it. > Writing the above was very useful for me, because it made me realize the > current problem is quite wider than just wildcard certificates. > The attack is possible even without a wildcard certificate. I'm glad someone agrees with me on that point. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto