On 12/13/09 11:04 AM, Jonathan Schleifer wrote: > Peter Saint-Andre <[email protected]> wrote: > >> Not really. It depends on what level of trust you have in those >> anchors. CAs are not interchangeable. > > Either you include additional CAs and then it makes sense to include > others that are used by a lot of XMPP services, or you don't include > any additional CAs at all. It does not make much sense to include one > that is often used, but refuse to include another one that is used about > the same number of service by reasoning that including CAs is evil, > even though it has been done for other CAs.
Who said that including CAs is evil? My argument is that policies differ. Just because a lot of people use a particular CA doesn't make it good. Peter -- Peter Saint-Andre https://stpeter.im/
smime.p7s
Description: S/MIME Cryptographic Signature
