Good progress by @trailofbits on resolving the MITM threat model gap in algo VPN. http://bit.ly/2iuRPNb
-
then if the server private key is compromised you're screwed. Never storing the private key seems promising
Compromising the server private key requires compromising the entire server. Even if you protect the key, you're still fucked.
-
-
does the server use the private key? If it does then i get it
-
It's only needed to gen certs for new users. Today: if you don't use that feature, then it'll never be decrypted and exposed.
- 4 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.