Tor Project infrastructure updates in response to security breach
Jacob Appelbaum
jacob at appelbaum.net
Fri Jan 22 01:21:26 UTC 2010
Mike Perry wrote:
>
> I suppose I could also create a rogue code signing certificate and
> provide that over SSL for people to install, but then I wonder if
> vanilla Firefox will reject my XPIs then because they are signed, but
> with an "invalid" cert.
>
I have a few of those laying around. I guess we could run some tests and
find out?
Best,
Jake
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 155 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20100122/dd0c2cd2/attachment.pgp>
More information about the tor-talk
mailing list