Gmail and SSL

Keith Medcalf kmedcalf at
Sun Dec 30 20:30:03 UTC 2012

Your assertion that using "bought" certificates provides any security benefit whatsoever assumes facts not in evidence.

Given recent failures in this space I would posit that the requirement to use certificates purchased from entities "under the thumb" of government control, clearly motivated only by profit, and with highly questionable moral and ethical standards represents a huge increase in risk of passive attack and confidentiality failure where such rosk did not previously exist.

Sent from Samsung Mobile

-------- Original message --------
From: Jimmy Hess <mysidia at> 
To: Randy <nanog at> 
Cc: NANOG list <nanog at> 
Subject: Re: Gmail and SSL 

More information about the NANOG mailing list