On 2012-10-06 12:12 PM, Randall Webmail wrote:
It had no certificate.
Why is that?
Central authority is a security hole.
Suppose the state wants a more cooperative Tor. The guy who is most
cooperative will get to be designated the real Tor.
Instead, you should verify the digital signatures of Tor Browser
* Microsoft Windows
<https://media.torproject.org/video/torbrowser-docs/How-to-verify-signatures-in-Windows.mp4>
* Apple OSX
<https://media.torproject.org/video/torbrowser-docs/How-to-verify-signatures-in-OSX.mp4>
* Linux
<https://media.torproject.org/video/torbrowser-docs/How-to-verify-signatures-in-Linux.mp4>
_______________________________________________
cryptography mailing list
[email protected]
http://lists.randombit.net/mailman/listinfo/cryptography
