Thunderbird and Pretty Easy Privacy - current status

Sebastian sebix at sebix.at
Sat Feb 27 12:23:44 UTC 2016


On 02/27/2016 07:28 AM, Matt Harris wrote:
> On 27/02/2016 3:17 AM, Nathan Tuggy wrote:
>> It’s a sad day when privacy-oriented, bug-savvy Thunderbird
>> contributors can’t recognize a CAcert <http://www.cacert.org/>-signed
>> website.
> No  it is reflective of my concerns,  are we going to have these sort
> of meaningless errors just pop up in Thunderbird as well?  It might be
> a sad day,  but our users are not privacy oriented,  bug savy or
> contributors.  They just want the link they clicked to work.  To
> paraphrase what I have been told many times.  I do not care where it
> goes,  or if it is malicious or not,  that is why I have an anti virus
> program.
>
> Mozilla refused to include CAcert Bug 215243
> <https://bugzilla.mozilla.org/show_bug.cgi?id=215243> refers.  That
> was back in 2009.  The last update at CAcert was in 2010.  Their todo
> <http://wiki.cacert.org/Audit/ToDo>list refers. 
>
> Is P=P based on using certificates from a CA that can not get itself
> integrated into Firefox?  I really do not know as to view the source
> code I need to trust an organization that I am not exactly sure I do
> trust, and the web site is really devoid of any other information at
> all about what he technology is,  or how it is proposed to work.
The organization and community of CACert is in a really bad state
currently. Community and board strongly disagree. CACert has a great
idea, but not a trustworthy organization at the moment.
I can't think of any reasons to use certificates signed by them, as
there's now letsencypt anyway. pep.foundation uses such a certificate.
(so why does cacert.pep.foundation even exist?)

But that's not the point here.
- pEp wants to reach non-exerienced users, they don't know of CACert
- the certificate is only valid for cacert.pep-project.org, thus also
gives a ssl_error_bad_cert_domain for https://pep-project.org/

Sebastian
>
>
> Matt
>
>
> _______________________________________________
> tb-planning mailing list
> tb-planning at mozilla.org
> https://mail.mozilla.org/listinfo/tb-planning
>
> -- 
> python programming - mail server - photo - video - https://sebix.at
> cryptographic key at https://sebix.at/DC9B463B.asc and on public keyservers

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://mail.mozilla.org/pipermail/tb-planning/attachments/20160227/957ebc43/attachment.sig>


More information about the tb-planning mailing list