Subj : Binkd and TLS
To   : Michiel van der Vlist
From : Alexey Fayans
Date : Tue Dec 17 2019 06:02 pm

Hello Michiel!

On Tue, 17 Dec 2019 at 14:34 +0100, you wrote to me:

 AF>> I mean something different. For example, if it would be somehow
 AF>> possible to store CA pubkey in the nodelist, it could work.
 MV> That would mean a significant redesign of the format of the nodelist.
 MV> WHich would make a lot of nodelist processing sofware go in a flat
 MV> spin. I am not sure we should go that way...

Yep, exactly.

 AF>> Or we could have a global FIDONET CA. :)
 MV> Experience with previous "centralised authority" in Fidonet tells me
 MV> this is a bad idea. Can you say "echolist"?

I don't like this either.

 MV> If I have to choose between the two evils of a centralised authority
 MV> within Fidonet or one outside Fidonet, I'd pefer the latter. At last
 MV> the latter presumably has no interest in playing fidonet politcal
 MV> games.

The only problem with internet trusted CAs is that a node would need a domain 
to issue certificate for. While in FIDONET we could issue certificates for node 
addresses.


.... Music Station BBS | https://bbs.bsrealm.net | telnet://bbs.bsrealm.net
--- GoldED+/W32-MSVC 1.1.5-b20180707
 * Origin: Music Station | https://ms.bsrealm.net (2:5030/1997)

.