From owner-freebsd-questions@FreeBSD.ORG Tue Jan 6 07:58:41 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id F3B4D106566B for ; Tue, 6 Jan 2009 07:58:40 +0000 (UTC) (envelope-from fbsd.questions@rachie.is-a-geek.net) Received: from mail.rachie.is-a-geek.net (rachie.is-a-geek.net [66.230.99.27]) by mx1.freebsd.org (Postfix) with ESMTP id C5F0D8FC0C for ; Tue, 6 Jan 2009 07:58:40 +0000 (UTC) (envelope-from fbsd.questions@rachie.is-a-geek.net) Received: from localhost (mail.rachie.is-a-geek.net [192.168.2.101]) by mail.rachie.is-a-geek.net (Postfix) with ESMTP id 01113AFC1FF; Mon, 5 Jan 2009 22:58:39 -0900 (AKST) From: Mel To: freebsd-questions@freebsd.org Date: Mon, 5 Jan 2009 22:58:39 -0900 User-Agent: KMail/1.9.10 References: <20090102164412.GA1258@phenom.cordula.ws> <20090103013825.18910bf5@gumby.homeunix.com> <495F5DD7.2070302@infracaninophile.co.uk> In-Reply-To: <495F5DD7.2070302@infracaninophile.co.uk> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Message-Id: <200901052258.39785.fbsd.questions@rachie.is-a-geek.net> Cc: Subject: Re: Foiling MITM attacks on source and ports trees X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 06 Jan 2009 07:58:41 -0000 On Saturday 03 January 2009 03:45:11 Matthew Seaman wrote: > [*] Buying a high security cert from the likes of Verisign or OpenSRS wou= ld > set you back about =A3800 p.a. and it would probably be necessary to use > someone like the FreeBSD Foundation as an appropriate body to own the cer= t. I would actually trust a self-signed cert by the FreeBSD security officer,= =20 more then one by Verisign. Power hungry companies like Verisign are more=20 succeptable to corruption then the entity I want to have or already a=20 relationship with in the first place. =2D-=20 Mel Problem with today's modular software: they start with the modules and never get to the software part.