On Wed, Apr 09, 2014 at 01:00:10 +0930, Tim <ignored_mailbox@xxxxxxxxxxxx> wrote:
It was an option that I considered ought to be set by default. I would have thought that checking for revoked certificates should be a mandatory step in a secure browsing situation. I wonder what the current state of play is with that?
That depends on your threat model. Checking for revocation leaks information about what sites you are visiting. Some might consider that a bigger risk than active man in the middle attacks.
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
