[Enigmail] Setting trust levels for unknown keys
John W. Moore III
jmoore3rd at bellsouth.net
Thu Apr 30 11:53:06 PDT 2009
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Ayush Sharma wrote:
> I have absolutely no idea about this stuff Robert (or shall I use Mr.
> Hansen?), but just asking, shouldn't CACert go through some kind of
> "stringent" (LOL) tests to ensure that it doesn't goof up down the road,
> something like it does "what it should" with a success rate more than
> some threshold limit, before it gets recognized by browsers as a
> trustworthy Root CA by default (and I guess that's why it's NOT accepted
> to date by firefox), while Thawte is.
An Audit is in progress at present. Thawte, VeriSign and Others are
included because they pay a hefty inclusion fee. At least they do to
M$. Most other Browsers available merely include the same ones that M$
does. Most likely the first Browser that will include CAcert will be
those offered by Mozilla.
JOHN ;)
Timestamp: Thursday 30 Apr 2009, 14:52 --400 (Eastern Daylight Time)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10-svn4987: (MingW32)
Comment: Public Key at: http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: https://www.gswot.org
Comment: Homepage: http://tinyurl.com/yzhbhx
iQEcBAEBCgAGBQJJ+fOQAAoJEBCGy9eAtCsPuewIAJkU803gwj4/EP5FOS0LKaZv
m9K/1pL7UxOJQXrKMbBMZvVvEEItPhurNVgOY0O//vuvkQLl+Fz/ydJJJYqURbrV
eSXnnjegvHwETzBkdmHTdZomlJcgGjfg5JvE/WhlC3ehUtG3tRIx3QbnD1D/fkZB
ppZZj20s5AdC5TsYi2ARtar5VdEjbdH2s1MzJBOAXtoC9w+M2YPNvHLvIJ5ebEy4
DBzjHgC/GDbYkpHeG1wOqVQ3q8rzgOUxELRexgd8wIgLiLWoKd+CsnB9KmTE74y+
8UWEP7QNHsjYIuaaOyhQG9hWtSQJS3w1lI+2drTponh8lDGcPVOE44zhC0QM514=
=RSk8
-----END PGP SIGNATURE-----
More information about the Enigmail
mailing list