[Owasp-singapore] The Problem of Issuing Certs For Unqualified Names
Wong Onn Chee
ocwong at usa.net
Thu Apr 7 12:11:53 EDT 2011
I nearly laughed my head off when I read this
"In the Observatory we have discovered many examples of CA-signed
certificates unqualified domain names. In fact, the most common
unqualified name is 'localhost', which always refers to /your own
computer/! It simply makes no sense for a public CA to sign a
certificate for this private name."
The web of trust inherent for CAs to function is slowly decaying....
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-singapore