Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
tptacek
on Aug 30, 2011
|
parent
|
context
|
favorite
| on:
Gmail.com being MITM'd by Iran using this certific...
So start with the CAs, and then allow your friends and their friends and the EFF to subtract from that set.
JoshTriplett
on Aug 30, 2011
[–]
A blacklist-based approach seems like a bad idea for security.
tptacek
on Aug 30, 2011
|
parent
[–]
Blacklists are bad in authorization scenarios. But we're talking about authentication and trust.
Consider applying for YC's Fall 2026 batch!
Applications
are open till July 27.
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search: