On Tuesday, 31 December, 2019 04:44, Constantine A. Murenin <muren...@gmail.com> wrote:
>Just to make it clear: are you suggesting that it should be a requirement >to always verify the site where anonymous people make anonymous edits? >Let that sink in. TLS 1.2 as deployed in Web Browsers does not authenticate the end-point. What it does is present an "Advertizing ID" that is akin to the "Advertizing ID" that the telco's sold as "Caller ID", because they new that y'all proles would not pay if there were truth in naming. By the same token the general certificate system will "say" whatever he who pays wants it to say. It does not verify anything other than the fact that the remote end-point went to the bother of buying (or the trouble of fiddling about with) advertizing certificates. -- The fact that there's a Highway to Hell but only a Stairway to Heaven says a lot about anticipated traffic volume.
