Subject:
|
Re: LUGNET Memberships
|
Newsgroups:
|
lugnet.admin.general
|
Date:
|
Wed, 27 Sep 2000 01:26:51 GMT
|
Viewed:
|
290 times
|
| |
|
|
On Tue, Sep 26, 2000 at 11:47:08PM +0000, Matthew Miller wrote:
> Dan Boger <dan@wwind.com> wrote:
> > hmmm... now there's a thought.... how would that work though? make a
> > private/public key pair for each member, and store the public key in the
> > cookie? but what would stop someone from sniffing and stealing the cookie?
> > auth over ssl?
>
> Oh, I was thinking of something newsreader-based. It'd be more of a pain for
> the web interface. Unless someone wants to hack something into Mozilla. :)
heh, I wouldn't know anything about the newsreader, but it shouldn't be hard
to put in the mail gateway... and that would certify the sender... however,
for the web interface (after thinking about it more), you want it to me a lot
more portable, and having the key (either public or secret) all the time isn't
really an option... Unless you give an option to disable posting from an
uncetified source... so I'd be able to say "I will NEVER post from the web,
or from a newsreader, only from a gpg signed email"....
> Once upon a time, Verisign was making a big deal over personal certificates.
> Guess they dropped that, since I haven't heard much from them for a long
> time.
again, certs that are stored on a single computer, won't help you when you
want to post from a library, or from a friend's house.
Dan
|
|
Message is in Reply To:
 | | Re: LUGNET Memberships
|
| (...) Oh, I was thinking of something newsreader-based. It'd be more of a pain for the web interface. Unless someone wants to hack something into Mozilla. :) Once upon a time, Verisign was making a big deal over personal certificates. Guess they (...) (24 years ago, 26-Sep-00, to lugnet.admin.general)
|
3 Messages in This Thread:
 
- Entire Thread on One Page:
- Nested:
All | Brief | Compact | Dots
Linear:
All | Brief | Compact
|
|
|
|
