Giancarlo Razzolini writes: > One of the main benefits of the TLS wouldn't only be to render > impossible for anyone to know which pages you're accessing on the site, > but also the fact that we would get a little more security getting the > SSH fingerprints for the anoncvs servers. Having them in clear text as > they are today, isn't very secure.
Another attack currently possible against www.openbsd.org is changing the https://openbsdstore.com links to http://openbsdstore.com, and running sslstrip on that. Or the PayPal links...
