7 Matching Annotations
  1. Mar 2017
  2. Sep 2016
    1. Until Let’s Encrypt fixes their bullshit, the CAcert certificate stays.

      As of now (2016-09-20), xaymar.com actually does use a certificate issued by Let's Encrypt. It would be very interesting to read a follow-up article about the reasons that lead to this switch. Sadly, I haven't been able to find one.

  3. Mar 2015
    1. there's no change to the revocation of bad certificates, which is still done by the CAs.
    2. certificates continue to be issued and revoked as they always have been
    3. Finally, everyone who interacts with logs should check with each other that they have all seen the same log—that is, that the log is not presenting different views to different people.
    4. The core idea behind Certificate Transparency is the public, verifiable, append-only log.
    5. Whenever a client connects to a server, it sends a few items to the server, which the server may verify or merely cache; in return the server sends a few items back from its cache. This establishes what is effectively a peer-to-peer network between the clients.