Delivery-Date: Wed, 20 Apr 2016 13:27:44 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.2 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_MED,
	T_RP_MATCHES_RCVD,UNPARSEABLE_RELAY autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 288E51E04C2;
	Wed, 20 Apr 2016 13:27:43 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id C60993B2D9;
	Wed, 20 Apr 2016 17:27:38 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 872873B2D7
 for <tor-talk@lists.torproject.org>; Wed, 20 Apr 2016 17:27:34 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id Me60eteWG6D8 for <tor-talk@lists.torproject.org>;
 Wed, 20 Apr 2016 17:27:34 +0000 (UTC)
Received: from plane.gmane.org (plane.gmane.org [80.91.229.3])
 (using TLSv1 with cipher AES256-SHA (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 55FF93B2B3
 for <tor-talk@lists.torproject.org>; Wed, 20 Apr 2016 17:27:34 +0000 (UTC)
Received: from list by plane.gmane.org with local (Exim 4.69)
 (envelope-from <gno-or-talk-2@m.gmane.org>) id 1asvuU-0006Yz-F3
 for tor-talk@lists.torproject.org; Wed, 20 Apr 2016 19:27:30 +0200
Received: from disorgive.com ([disorgive.com])
 by main.gmane.org with esmtp (Gmexim 0.1 (Debian))
 id 1AlnuQ-0007hv-00
 for <tor-talk@lists.torproject.org>; Wed, 20 Apr 2016 19:27:30 +0200
Received: from lukep by disorgive.com with local (Gmexim 0.1 (Debian))
 id 1AlnuQ-0007hv-00
 for <tor-talk@lists.torproject.org>; Wed, 20 Apr 2016 19:27:30 +0200
X-Injected-Via-Gmane: http://gmane.org/
To: tor-talk@lists.torproject.org
From: lukep <lukep@tutanota.com>
Date: Wed, 20 Apr 2016 17:27:17 +0000 (UTC)
Lines: 32
Message-ID: <loom.20160420T191226-820@post.gmane.org>
References: <CAO7N=i1zCu2tmCG6psHfT3YNwpeZfuDa0Wfergy_zgNaVT4rTg@mail.gmail.com>
 <20160418190115.GD9491@moria.seul.org>
Mime-Version: 1.0
X-Complaints-To: usenet@ger.gmane.org
X-Gmane-NNTP-Posting-Host: sea.gmane.org
User-Agent: Loom/3.14 (http://gmane.org/)
X-Loom-IP: 94.155.49.47 (Mozilla/5.0 (Windows NT 6.1;
 rv:38.0) Gecko/20100101 Firefox/38.0)
Subject: Re: [tor-talk] Comments on
	https://www.torproject.org/docs/faq.html.en
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>



Roger Dingledine <arma <at> mit.edu> writes:

> 
> On Mon, Apr 18, 2016 at 06:39:33AM -0700, Ryan Carboni wrote:
> >
> >
> > 2. https://www.torproject.org/docs/faq.html.en#SSLcertfingerprint
> > I think the fingerprint is outdated.
> 
> We indeed just got new ssl certs. Probably the fix there is to just
> remove that FAQ entry.
> 


I can see the new SSL certificate for *.torproject.org, issued 2016-04-15.
I'd prefer the FAQ entry to be updated rather than removed. It gives me a
little confidence in the site, though presumably anyone who was MITM-ing the
SSL connection would also changes the fingerprint on the FAQ!

The blog.torproject.org certificate is still in date until 2017-06-14 but my
certificate viewer shows this is issued by DigiCert not RapidSSL as stated
on the FAQ. Also the FAQ quotes SHA1 and MD5 fingerprints for the
certificate,  both of these are broken (but hopefully not for the same
cert!) I'm not too wrorried but can someone post the correct info to the
FAQ? A SHA-256  fingerprint would also be good.

Thanks

-- lukep


-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

