https://bugzilla.wikimedia.org/show_bug.cgi?id=47832
--- Comment #18 from Ryan Lane <[email protected]> --- I don't have very strong worries about certificate spoofing except in very targeted uses. It's possible to detect certificate spoofing if we're pinning our certificates (which we should be doing). If a vendor is caught allowing a government to spoof using their authority, they'll get yanked pretty quickly from all browsers. The targeted cases /are/ particularly worrying, of course, but it's not something we can really control, and that person is likely already screwed. -- You are receiving this mail because: You are the assignee for the bug. You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list [email protected] https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
