17 Dec
2012
17 Dec
'12
10:02 a.m.
On Sat, Dec 15, 2012 at 12:23 PM, Andy Steingruebl <andy@steingruebl.com> wrote:
I think what you really want is the ability within Google's interface to specify how you'd like the certificate verified.
yes; this is what i want. for Google to arbitrarily enforce a decision is dumb and not useful.
17 Dec
17 Dec
7:30 p.m.
New subject: [cryptography] Gmail and SSL
One could require the user to specify/confirm a certificate fingerprint on gmail in such a case. That way you're MitM proof, even with a self signed certificate.
4388
Age (days ago)
4388
Last active (days ago)
1 comments
2 participants
participants (2)
-
coderman -
CodesInChaos