Skip site navigation (1)Skip section navigation (2) 
Date:      Mon, 17 Dec 2007 04:36:36 -0800
From:      "David Schwartz" <davids@webmaster.com>
To:        "Tedm@Toybox. Placo. Com" <tedm@toybox.placo.com>
Cc:        Rob <bitabyss@gmail.com>, FreeBSD Chat <freebsd-chat@freebsd.org>, Andrew Falanga <af300wsm@gmail.com>
Subject:   RE: Suggestions please for what POP or IMAP servers to use
Message-ID:  <MDEHLPKNGKAHNMBLJOLKMEJEIOAC.davids@webmaster.com>
In-Reply-To: <BMEDLGAENEKCJFGODFOCCEDKCFAA.tedm@toybox.placo.com>
next in thread | previous in thread | raw e-mail | index | archive | help 

> Those payments are gigantic.  Imagine for a second if Verisign
> told Microsoft to kiss off, they were no longer going to pay
> Microsoft for "renting" space in the IE root certificate store.
> Microsoft would simply issue a root certificate revoke in Windows
> Updates for the Verisign public key, and a few weeks later
> millions of users would start getting messages that their browser
> was no longer recognizing the SSL certificate from ebay, paypal,
> Wells Fargo, etc. etc.

Surely Microsoft could revoke keys out of any browser the same way. If the
browser chose to use the Windows default key store, it would probably happen
automatically. If not, nothing would stop the update from removing the
certificate from whatever keystore other browsers use.

> If by some miracle those millions of users were to manually add
> those CA public keys into their root stores, Microsoft could merely
> continue to periodically issue revokements. ;-)

They could do this even to keys in Firefox, Netscape, or whatever other
browser you use.

> So now you maybe understand why Microsoft chose to crush Netscape,
> and why they hand out IE like candy?

Sorry, your argument makes no sense.

More likely, Microsoft was afraid that a portable browser could become the
platform of the future, making the operating system on longer particularly
important. If that was going to happen, they had better be the market leader
in the browser business.

DS

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?MDEHLPKNGKAHNMBLJOLKMEJEIOAC.davids>