Free SSL certificates for Open Source projects https://www.globalsign.com/ssl/ssl-open-source/ … Code Signing, too, pleaaase? Would improve security of signed gems!
-
-
Replying to @nahi
@nahi When signed, trust is end to end, in the other cases I need to trust the server. Compromise of http://rubygems.org hurts much less.2 replies 0 retweets 0 likes
Replying to @nahi
@nahi @_emboss_ The Update Framework has a more complex model for revocation with "survivable key compromise": http://freehaven.net/~arma/tuf-ccs2010.pdf …
4:58 PM - 11 Sep 2013
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.