💾 Archived View for rawtext.club › ~sloum › geminilist › 001804.gmi captured on 2020-11-07 at 02:28:53. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2020-09-24)
-=-=-=-=-=-=-
solderpunk solderpunk at SDF.ORG
Fri Jun 19 21:03:37 BST 2020
- - - - - - - - - - - - - - - - - - -
On Fri, Jun 19, 2020 at 06:51:35PM +0000, colecmac at protonmail.com wrote:
Whether this is specced (as an optional client behaviour) or not, I think
the spirit of "mostly secure" suggests that at the very least, simple clients
should look at cert hash and expiry, and not just the cert public key as Felix
suggested in this thread originally. I think it'd be nice to see this suggestion
in the Best Practices file, if you agree.
I want to setup an entirely separate document on TOFU practices! Idon't want to rush into it, though. I am planning to read this paperover the weeekend:
https://rp.delaat.net/2012-2013/p56/report.pdf
Feel free to join in!
Cheers,Solderpunk