[liberationtech] Y! / SSL
Eric S Johnson
crates at oneotaslopes.org
Sun Oct 5 20:52:02 PDT 2014
I just got back to CN from a vacation. I’m now (in all three main Windows browsers) seeing yahoo.com automatically flip over to HTTPS--and then give a bad cert error. The *root* cert is listed as yahoo.com and is valid “23 Sep 14 to 23 Sep 15.”
Is Y! experimenting with making access to their resources always-only-HTTPS? Are they having certificate problems? “HTTP only” seems like a good direction in which to go, but teaching people to accept bad cert warnings seems like a bad direction in which to go.
Best,
Eric
OpenPGP <http://keyserver.pgp.com/vkd/DownloadKey.event?keyid=0xE0F58E0F1AF7E6F2> : 0x1AF7E6F2 ● Skype: oneota ● XMPP/OTR: berekum at jabber.ccc.de <mailto:berekum at jabber.ccc.de> ● Silent Circle: +1 312 614-0159
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20141006/f415722c/attachment.html>
More information about the liberationtech
mailing list