Christian Huitema wrote:
> You can indeed override this, and "continue to
this website".
> But I am not sure we really want to encourage people to
do
> that.
Maybe IE7 beta can import Randy's root CA certificate
somehow:
http://rt.psg.com/
Fingerprints published, of course you have
to trust that what you see are the real rt.psg.com pages.
What you got sounds like "working as designed",
unfortunately
not my problem in this case...
> The problem is user perception.
...ACK, but that's a different problem. My "user
perception"
is worse for the draft tracker site, because my UA will tell
me again and again that the offered Thawte certificate
expired
Mon, Jul 27, 1998. Of course that's another problem, it
used
to work recently (2005).
> I am sure the IETF can do better than that.
Maybe, but it's not trivial.
> Think about it. The IETF should really be an example
for
> Internet users.
There might be ways to bypass all this complex TLS stuff for
read access on a site with known credentials ietf:ietf.
BASIC
authentication might be good enough. If the only purpose is
to keep misbehaved spiders out (?)
Bye, Frank
_______________________________________________
Ipr-wg mailing list
Ipr-wg ietf.org
https:/
/www1.ietf.org/mailman/listinfo/ipr-wg
|