Thunderbird and Pretty Easy Privacy - current status
sebix at sebix.at
Sat Feb 27 12:23:44 UTC 2016
On 02/27/2016 07:28 AM, Matt Harris wrote:
> On 27/02/2016 3:17 AM, Nathan Tuggy wrote:
>> It’s a sad day when privacy-oriented, bug-savvy Thunderbird
>> contributors can’t recognize a CAcert <http://www.cacert.org/>-signed
> No it is reflective of my concerns, are we going to have these sort
> of meaningless errors just pop up in Thunderbird as well? It might be
> a sad day, but our users are not privacy oriented, bug savy or
> contributors. They just want the link they clicked to work. To
> paraphrase what I have been told many times. I do not care where it
> goes, or if it is malicious or not, that is why I have an anti virus
> Mozilla refused to include CAcert Bug 215243
> <https://bugzilla.mozilla.org/show_bug.cgi?id=215243> refers. That
> was back in 2009. The last update at CAcert was in 2010. Their todo
> <http://wiki.cacert.org/Audit/ToDo>list refers.
> Is P=P based on using certificates from a CA that can not get itself
> integrated into Firefox? I really do not know as to view the source
> code I need to trust an organization that I am not exactly sure I do
> trust, and the web site is really devoid of any other information at
> all about what he technology is, or how it is proposed to work.
The organization and community of CACert is in a really bad state
currently. Community and board strongly disagree. CACert has a great
idea, but not a trustworthy organization at the moment.
I can't think of any reasons to use certificates signed by them, as
there's now letsencypt anyway. pep.foundation uses such a certificate.
(so why does cacert.pep.foundation even exist?)
But that's not the point here.
- pEp wants to reach non-exerienced users, they don't know of CACert
- the certificate is only valid for cacert.pep-project.org, thus also
gives a ssl_error_bad_cert_domain for https://pep-project.org/
> tb-planning mailing list
> tb-planning at mozilla.org
> python programming - mail server - photo - video - https://sebix.at
> cryptographic key at https://sebix.at/DC9B463B.asc and on public keyservers
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 819 bytes
Desc: OpenPGP digital signature
More information about the tb-planning