[Ach] StartSSL for Business Sysadmins

L. Aaron Kaplan kaplan at cert.at
Sun Jan 12 18:35:00 CET 2014

On Jan 12, 2014, at 6:24 PM, Andreas Mirbach <a.mirbach at me.com> wrote:

> Hi Aaron,
> in my opinion a security guide that discuss just a view cipher oders has no value at all. The document title is applied crypto hardening and it is aimed to be a copy and paste reference for sysadmins. In an "applied" real world scenario there are CAs involved in the crypto chain. It is essential to understand crypto security as a process of many things come and work together. It's not just some console commands and the use of commonly thusted ciphers. 


you might be right but in the beginning we had to make some decisions what is "in scope" in the first version and "out of scope" and might be put into a later version or a different document (which of course should be referenced).

At that time, we all looked at the PKI issues and were saying to ourselves: "if we document all that we are never going to be finished " ;-) That's why became "out of scope" for the first version. 

> I agree with you that this i maybe a topic for a second document.



// L. Aaron Kaplan <kaplan at cert.at> - T: +43 1 5056416 78
// CERT Austria - http://www.cert.at/
// Eine Initiative der nic.at GmbH - http://www.nic.at/
// Firmenbuchnummer 172568b, LG Salzburg

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 163 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.cert.at/pipermail/ach/attachments/20140112/c538e975/attachment.sig>

More information about the Ach mailing list