Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's Facebook page has a chat bot now. Message it for stories and more. Check out the new SourceForge HTML5 Internet speed test! ×

Submission + - Ask Slashdot: Has Gmail's SSL certificate changed, and how would we know?

An anonymous reader writes: Recent reports from around the 'net suggest that SSL certificate chain for gmail has either changed this week, or has been widely compromised. Even in less-than-obvious places to look for information, such as Google's Online Security Blog, are silent. At the moment, the blind are leading the blind to blindly trust the new certificates in order to see the dancing bunnies in their emails. The problem isn't specific to gmail, of course, which leads me to ask: What is the canonically-accepted out-of-band means by which a new SSL certificate's fingerprint may be communicated and/or verified by end users?
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Ask Slashdot: Has Gmail's SSL certificate changed, and how would we know?

Comments Filter:

"Would I turn on the gas if my pal Mugsy were in there?" "You might, rabbit, you might!" -- Looney Tunes, Bugs and Thugs (1954, Friz Freleng)

Working...