[SSL Observatory] Widespread RNG vulnerabilities discovered using Observatory data
Phillip Hallam-Baker
hallam at gmail.com
Fri Feb 17 08:51:30 PST 2012
If the reporting mechanism is public we may well see a DDoS attack
against it in parallel with an actual attack.
On Fri, Feb 17, 2012 at 9:03 AM, Ondrej Mikle <ondrej.mikle at nic.cz> wrote:
> On 02/16/2012 01:32 AM, Phillip Hallam-Baker wrote:
>> Making a contact list is not a problem, making it public needs a bit of thought.
>
> Could you list some of the reasons why a public CA-security-contact-list
> could pose issues? Something off top of my head:
>
> - confused users asking at the wrong place
> - spam (?)
>
> Ondrej
--
Website: http://hallambaker.com/
More information about the Observatory
mailing list