LibreSSL languishes on Linux
LibreSSL languishes on Linux
Posted Jan 14, 2021 15:39 UTC (Thu) by brunowolff (guest, #71160)In reply to: LibreSSL languishes on Linux by josh
Parent article: LibreSSL languishes on Linux
That depends on the threat model. Using encryption without authentication (allowing MitM attacks) requires the attacker to use an active attack instead on a passive attack which may be good enough.
Certs signed by official CAs don't actually guaranty that you are communicating with the entity that you think you are.
Certs signed by official CAs don't actually guaranty that you are communicating with the entity that you think you are.