[tor-talk] Giving Hidden Services some love

Peter Tonoli peter+tor at metaverse.org
Fri Jan 2 05:33:38 UTC 2015


On 2/01/2015 4:03 pm, Virgil Griffith wrote:
> Being a CA for .onion seems a reasonable thing to be.  Should someone
> already part of the Tor community like torservers.net become that CA?

I thought the general consensus was that the CA system is totally
broken. Why would we want to build on an already broken system,
considering the trust and reliability that's required for Tor?

> On Thu, Jan 1, 2015 at 6:52 PM, Thomas White <thomaswhite at riseup.net> wrote:
> To individuals - no. However that being said, I am currently working
> with two CA's on getting them to set out a standard to adopt with the
> other CAs since they cannot just issue a certificate without following
> the guidance that the CA Forum sets out. Right now their main problem
> is that there is no policy on it and so standardising the procedure is
> required for any certificates with an expiry beyond November 2015.
> 
> I'll update this list when we have new information on the matter but I
> don't expect an update until their next official policy meeting around
> May I believe.


More information about the tor-talk mailing list