bugs.gnupg.org TLS certificate

[Avi]

I have no opinion one way or the other re: StartSSL, but there are those
who do:

<
https://danconnor.com/post/50f65364a0fd5fd1f7000001/avoid_startcom_startssl_like_the_plague_
>
<https://bugzilla.mozilla.org/show_bug.cgi?id=994033>
<
https://www.techdirt.com/articles/20140409/11442426859/shameful-security-startcom-charges-people-to-revoke-ssl-certs-vulnerable-to-heartbleed.shtml
>

etc.

Avi


----
User:Avraham

pub 3072D/F80E29F9 1/30/2009 Avi (Wikimedia-related key) <avi.wiki at gmail.com
>
   Primary key fingerprint: 167C 063F 7981 A1F6 71EC ABAA 0D62 B019 F80E
29F9

On Thu, Mar 12, 2015 at 7:47 PM, Mick Crane <mick.crane at gmail.com> wrote:

>
>
> On 12 Mar 2015, at 23:21, Hugo Osvaldo Barrera <hugo at barrera.io> wrote:
>
>
> On 2015-03-11 17:38, Werner Koch wrote:
>
> On Wed, 11 Mar 2015 15:12, brian at minton.name said:
>
>
> git.gnupg.org) don't use that certificate.  Have you considered a wildcard
>
> certificate?  I know this has been discussed before, e.g. at
>
>
> Too expensive ;-).  To stop all these complaints I will add a so called
>
> real certificate but first I need to move the tracker to another
>
> machine.
>
>
>
> Shalom-Salam,
>
>
>  Werner
>
>
> No need for a wildcard one. Just get one free certificate for each
> subdomain
>
> from StartSSL.
>
>
> I think Werner can make his own authority and certificate ?
> That sort of information stuff used to much more readily accessible on the
> net, like how to run your own DNS.
> For forgetful people is difficult to track things down now with so much
> available.
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20150312/918fa9a7/attachment-0001.html>