On 09/20/2011 03:21 PM, Jeffrey Walton wrote:
Google's smart phone position (http://code.google.com/p/cyanogenmod/issues/detail?id=4260): "Why would we remove the root certificate? DigiNotar hasn't been revoked as a CA... MITM attacks are pretty rare." (Sep 1, 2011). On Sept 2, 2011 the issue was closed. On Sept 10, 2011 they took partial action (apparently, the project maintainers were getting tired of folks re-opening the issue).
Those are the Cyanogen guys. Android modders. I heard that one of them was employed by Samsung, but AFAICT they are not speaking for Google.
People who run Cyanogen will probably get the fix faster than I will get one for my non-modded Google Nexus S phone though. :-/
- Marsh _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
