Hey Dan, Algo is under active development and we have a bounty for that issue. tl;dr if your VPN is owned, your traffic is too
-
-
Replying to @dguido @dangoodin001
meh, taking things a bit too far there, but I think the bug is pretty fixable
1 reply 0 retweets 0 likes -
Replying to @dakami @dangoodin001
Me too! We stopped short before because all the easy fixes introduce UX issues.
1 reply 0 retweets 0 likes -
Replying to @dguido @dangoodin001
Do you need to sign new certs after the first one?
1 reply 0 retweets 0 likes -
Replying to @dakami @dangoodin001
If you want to do server maintenance, like adding new users, yeah. https://github.com/trailofbits/algo#adding-or-removing-users …
1 reply 0 retweets 0 likes -
Replying to @dguido @dangoodin001
Do user endpoints ever talk to eachother, or are they always trusting the VPN concentrator?
1 reply 0 retweets 0 likes -
Replying to @dakami @dangoodin001
Endpoints aren't talking to eachother, only to the concentrator.
1 reply 0 retweets 0 likes -
Replying to @dguido @dangoodin001
Maybe we have two roots, one authing server to user, one authing user to server, latter no serverauth, former ephem?
2 replies 0 retweets 1 like -
Replying to @dakami @dangoodin001
All of this requires testing with clients. Not sure how things like iOS will react.
2 replies 0 retweets 0 likes -
Replying to @dguido @dangoodin001
hmmm there are people who should actually be on this thread
@rmhrisk@randomoracle3 replies 0 retweets 0 likes
You're all welcome to join us on https://empireslacking.herokuapp.com where we're having a chat about it.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.