[tor-dev] Of CA-signed certs and .onion URIs

Jacob Appelbaum jacob at appelbaum.net
Sat Nov 15 02:57:44 UTC 2014

On 11/15/14, Griffin Boyce <griffin at cryptolab.net> wrote:
> Fair. What are your thoughts about possible trade-offs with anonymity when
> using a CA-signed cert?

I have many. It won't impact client anonymity from where I stand and
it will ease usability for certain use cases.

All in all, I welcome the CA cartels signing .onion domains and
encouraging the adoption of warning/error free TLS in browsers or
other programs, such as mail or IM clients.

All the best,

More information about the tor-dev mailing list