Delivery-Date: Fri, 20 Nov 2015 18:16:41 -0500
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=5.0 tests=BAYES_00,DKIM_ADSP_CUSTOM_MED,
	DKIM_SIGNED,FREEMAIL_FROM,RCVD_IN_DNSWL_MED,T_DKIM_INVALID,T_RP_MATCHES_RCVD
	autolearn=ham version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 45A3A1E0ADD;
	Fri, 20 Nov 2015 18:16:39 -0500 (EST)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 3359037024;
	Fri, 20 Nov 2015 23:16:36 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 1387036E61
 for <tor-talk@lists.torproject.org>; Fri, 20 Nov 2015 23:16:33 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id jkSozpy5QcvX for <tor-talk@lists.torproject.org>;
 Fri, 20 Nov 2015 23:16:33 +0000 (UTC)
Received: from mail-yk0-x232.google.com (mail-yk0-x232.google.com
 [IPv6:2607:f8b0:4002:c07::232])
 (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (not verified))
 by eugeni.torproject.org (Postfix) with ESMTPS id DF73336CA5
 for <tor-talk@lists.torproject.org>; Fri, 20 Nov 2015 23:16:32 +0000 (UTC)
Received: by ykdr82 with SMTP id r82so181740893ykd.3
 for <tor-talk@lists.torproject.org>; Fri, 20 Nov 2015 15:16:30 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :content-type; bh=lpptAFqDupQMdfMkjYG/H5c07J4L4tRldvFlYbuKd9M=;
 b=K8QqwEnN3OEo7vUw+UavOBEjJF9lP4Jdv1fVmHoZrhxwoLRzoHQ2W6gGmucvupB6n3
 crakkgReVeu4inp2W5wdlOxEmbleJzfU+VFoVLjw500C7LR3VfORz1jRY9gTCJBiYD95
 Jjk3w4dpZMT2aaCt4yiEjgREXwB5iKv6+MXmHLQ/EyXKrotTjVfrnHMHdOvuDhtACXHF
 fsWROsqY1NnMCGW2Sizp/MKQ7C1Gp2eFoG/dIuc2rcWKFKoZUINOm/x0UwziMlNJwYwJ
 8IaBHFPriJ1p5fRxql7JqutwSRHB7PmpE6Wyz4HQ6RNi0yMtz1fiQVGbuusj6iJqXHY+
 bhtw==
MIME-Version: 1.0
X-Received: by 10.13.238.129 with SMTP id x123mr15126385ywe.152.1448061390539; 
 Fri, 20 Nov 2015 15:16:30 -0800 (PST)
Received: by 10.129.74.4 with HTTP; Fri, 20 Nov 2015 15:16:30 -0800 (PST)
In-Reply-To: <564FA467.3060905@riseup.net>
References: <CAPjf7ZXsPCo2U0rXD2uXWsrxc5Do=9_1KUyY1JrU+gYztNdXbg@mail.gmail.com>
 <564F9FD7.3060803@riseup.net>
 <AA7E7174-841B-4710-BFFA-0CE406F9F22F@gmail.com>
 <564FA467.3060905@riseup.net>
Date: Fri, 20 Nov 2015 18:16:30 -0500
Message-ID: <CAB7TAMmfAUO1+_kFhMXvSKGZCaBp-ZuMQ8BzHYt_GqphojEofA@mail.gmail.com>
From: Allen <allenpmd@gmail.com>
To: tor-talk@lists.torproject.org
X-Content-Filtered-By: Mailman/MimeDel 2.1.15
Subject: Re: [tor-talk] MITM attack on TLS
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

> You should remove these CAs

Or they might fire you.  IMO, you want to stay under the radar of your IT
department.  Much better if you can to let them have their MiTM certs and
go around them using SSH or some other protocol.
-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

