<span style='font-family:Verdana'><span style='font-size:12px'><br />
<br />
<p style="margin:0px; padding:0px;" >
        Ā </p>
<blockquote style="border-left: 1px solid rgb(204, 204, 204); padding-left: 5px; margin: 0px 0px 0px 5px;" type="cite">
        <p style="margin:0px; padding:0px;" >
                <span style="font-family: Verdana;"><span style="font-size: 12px;">----- Original Message -----</span></span></p>
        <p style="margin:0px; padding:0px;" >
                <span style="font-family: Verdana;"><span style="font-size: 12px;">From: Roger Dingledine</span></span></p>
        <p style="margin:0px; padding:0px;" >
                <span style="font-family: Verdana;"><span style="font-size: 12px;">Sent: 09/01/11 03:47 PM</span></span></p>
        <p style="margin:0px; padding:0px;" >
                <span style="font-family: Verdana;"><span style="font-size: 12px;">To: tor-talk@lists.torproject.org</span></span></p>
        <p style="margin:0px; padding:0px;" >
                <span style="font-family: Verdana;"><span style="font-size: 12px;">Subject: [tor-talk] Dutch CA issues fake *.torproject.org cert (among many others)</span></span></p>
        <br />
        <div>
                <div>
                        <pre style="white-space: pre-wrap; word-wrap: break-word;">
For those who haven't been following, check out
https://blog.torproject.org/blog/diginotar-debacle-and-what-you-should-do-about-it
You should pay special attention if you're in an environment where your
ISP (or your government!) might try a man-in-the-middle attack on your
interactions with https://www.torproject.org/.
We stepped up our schedule for switching the Tor Browser Bundle to Firefox
6 (which we can build from source on all platforms, and thus remove the
offending CA ourselves). New bundles are out now:
https://blog.torproject.org/blog/new-tor-browser-bundles-4
Perhaps now is a great time for you to learn how to verify the signatures
on Tor packages you download:
https://www.torproject.org/docs/verifying-signatures
--Roger
Hello Roger.
Is it possible to check the signatures for the Browser bundle, which I use on a USB with Windows but check
the signatures from my Mac? I only use internet cafe computers as they are so readily available where I live, are much faster than what I have been able to purchase for an ISP provider from my home and many times just isn't working. Don't know if that is possible to do from Mac on .exe files or whatever. Not real savvy here. Sorry.
</pre>
                </div>
        </div>
</blockquote>
</span></span>