-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 7/13/13 3:23 AM, Philipp Hancke wrote: > Am 12.07.2013 23:01, schrieb Peter Saint-Andre: >> But the real problems seem to be in deployments, not >> implementations. > > Well, it's an awareness problem. Currently, nothing breaks when an > s2s certificate expires. That means those are continued to use for > years. Nobody notices. Heh, it still works with jabber.org.
That will change eventually, but first we need to perform some other much-needed updates at jabber.org. > We don't even need POSH to solve these problems. Correct. > Likewise, few people notice when certain deployments suddenly stop > offering TLS. Or are surprised some big parties aren't using TLS at > all. Many of the big parties have multi-tenanted environments and simply can't deploy CA-issued PKIX certificates. That has held back progress for years. If we can solve that problem (via POSH), then we can get more services to support TLS-only. Or so I dream... ;-) Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.19 (Darwin) Comment: GPGTools - http://gpgtools.org Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQIcBAEBAgAGBQJR5aEOAAoJEOoGpJErxa2p+28QAI5xOCCxTH7++J7FMD8ISMtX rPJ7fxXjORtAmVLsYtUiaU8OfBkt1SvzAtvnrU6msItv6xvuzXX7YYrXKdabN0KH ijEliZm2+ISa02KQgHJebH6QQGQdpkkT7m+bDkMqSdPZzfhZGZQ/P3cWVV1YVcnh 4w4Hpt0i8UG3AxNMy/8BCWNtYkU+UdzzOVoG6dVp39hewVRQ504AVZdHQDo0eXKk UG9ohusBUg2usP3PVv+XwaBEg9e42ygjf0o5sthuieSAsFNEKmzq3UVfx7plOBak wqQ7iUgkL0m/vRplfauXGLA+t6c6aeBmoRv95PPhwBxSCwLkckvKBLejjpv2lDtD ctnDcBEsgmI5A3To9O31T/pDj0d7hXhEw/wTkCJmIBJDG8hDMkmN+Bm2mqwCUBYN IqrUEKk6EvMi+U81CluFHtdA3/varUojbFmgLDy/8OKRDnrvpWEZ9JAZBVuaec7P cKCK8HAsjE7nE4BCJtr2cTOAUE6dMzEtisLwZ4xSPFI7sdHAowsq2SZo19jui3ML zcC6NMCiCxpX2aRTsIjDW9PXNsze/F4lHtMtDRQKxN8j756t1Lm9rkxupoRo5NlB bQ0yYXJzcwR+w+gd5FyIT15OxqqAXubkARq+ENrasIgU2VfndjsX28sqMBCdOW5V cnWl33NB0+3TsxZq32/T =BC3I -----END PGP SIGNATURE----- _______________________________________________ JDev mailing list Info: http://mail.jabber.org/mailman/listinfo/jdev Unsubscribe: [email protected] _______________________________________________
