Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
Check out the new SourceForge HTML5 internet speed test! No Flash necessary and runs on all devices. ×

Submission + - Ask Slashdot: Has Gmail's SSL certificate changed, and how would we know?

An anonymous reader writes: Recent reports from around the 'net suggest that SSL certificate chain for gmail has either changed this week, or has been widely compromised. Even in less-than-obvious places to look for information, such as Google's Online Security Blog, are silent. At the moment, the blind are leading the blind to blindly trust the new certificates in order to see the dancing bunnies in their emails. The problem isn't specific to gmail, of course, which leads me to ask: What is the canonically-accepted out-of-band means by which a new SSL certificate's fingerprint may be communicated and/or verified by end users?
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Ask Slashdot: Has Gmail's SSL certificate changed, and how would we know?

Comments Filter:

Programming is an unnatural act.

Working...