@whispersystems Hey, you ARE pinning the flock TLS cert right? Also you should fix the rest of this stuff https://www.ssllabs.com/ssltest/analyze.html?d=flock-sync.whispersystems.org&s=54.244.91.66&latest …
-
-
Replying to @kyhwana
@kyhwana Ugh, for apps@whispersystems controls, why is most of that even ON?! Twisted defaults? Also, WTF 27-year SHA1 certificate?3 replies 0 retweets 0 likes -
Replying to @sindarina
@sindarina The server is its own authority. Makes no difference what the sig hash is or how long the expiration is.@kyhwana2 replies 0 retweets 0 likes -
Replying to @signalapp
@whispersystems@sindarina how does it not matter if someone can generate a self signed cert with the same SHA1? How are you pinning?3 replies 0 retweets 0 likes -
Replying to @sindarina
@sindarina dicks. And now my trust of them goes down.1 reply 0 retweets 0 likes -
Replying to @sindarina
@sindarina yep. Even if they don't trust the CA system it's what we have and you can get free certs now/soon.. So wtf1 reply 0 retweets 0 likes -
Replying to @sindarina
zwarte piet is racisme Retweeted Signal
@kyhwana 27 years just says 'LOLOLRANDOMDONTCARE', really. The same place this attitude comes from;https://twitter.com/whispersystems/status/592712876592406529 …zwarte piet is racisme added,
3 replies 0 retweets 0 likes
@sindarina @kyhwana You're right, we don't care about the expiration time on these certificates, because it provides zero security value.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.