[tbb-dev] Tor Messenger and Certificates

isis isis at torproject.org
Sun Nov 2 00:14:09 UTC 2014

Sukhbir Singh transcribed 0.9K bytes:
> Hi list,
> We are thinking of including certificates for OFTC, CCC, etc. with Tor
> Messenger, since some of these popular chat servers use self-signed
> certificates. Quick questions about this:
> - Is this a good idea -- including these certificates by default? Or
>   should we let the users click on "add exception" and then add the
>   certificates themselves?

It's probably friendlier to package them in, since they are frequently used by
a large number of people.

I can't think of any messaging programs off the top of my head which
explicitly bundles in commonly used self-signed certifications.  Somewhat
similarly, however, Adam Langley's xmpp-client does hardcode a list of .onion
addresses for commonly used XMPP servers. [0]  As such, it's probably
acceptable to add certificates in a transparent manner.

[0]: https://github.com/agl/xmpp-client/blob/master/config.go#L187
 ♥Ⓐ isis agora lovecruft
OpenPGP: 4096R/0A6A58A14B5946ABDE18E207A3ADB67A2CDB8B35
Current Keys: https://blog.patternsinthevoid.net/isis.txt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1154 bytes
Desc: Digital signature
URL: <http://lists.torproject.org/pipermail/tbb-dev/attachments/20141102/6ff5c54e/attachment.sig>

More information about the tbb-dev mailing list