Eddy Nigg wrote:
On 02/25/2009 08:31 PM, Gervase Markham:
On 23/02/09 23:54, Eddy Nigg wrote:
[...]
Only CAs are relevant if at all. You don't expect that 200 domain names
were registered by going through anti-spoofing checking and measures, do
you?!
[...]
Outsh, sorry! That should have been 200 *million* domain names were
registered by going through some anti-spoofing checking and measures...
OTOH domain spoofing is dangerous *even* when there's no certificate
involved, so it makes sense to require to solve it at the registrar/DNS
level, and not at the CA level.
But you are right to point out that the volume of domain names involved
makes unrealistic any procedure that's not fully automatized.
So I think Mozilla should require that the procedure be fully
automatized, and not accept any solution that requires human
intervention to approve requests, even if only for a portion of them.
--
dev-tech-crypto mailing list
dev-tech-crypto@lists.mozilla.org
https://lists.mozilla.org/listinfo/dev-tech-crypto
