[Noisebridge-discuss] TPM
Rodney Thayer
redshuttlegunner at gmail.com
Wed Jul 22 18:31:56 UTC 2009
CACert is questionable too. why not just spin your own root and put
it on an offline box?
and by the way, I believe z TPM wouldn't help. You want a machine with
an HSM if you want the key to be protected.
Jacob Appelbaum wrote:
> Dr. Jesus wrote:
>> Does anyone have a machine or two with a TPM? I'm thinking of
>> starting a CA for noisebridge to eliminate the annoying SSL warnings
>> on some of our gear. I have machines with TPMs in them, but they're
>> all laptops and I don't think it's such a good idea to build a CA on
>> top of that.
>
> Why would you want to use a TPM?
>
> I sure as hell am not going to install a CA root that you control. ;-)
>
> Why don't you just use CACert?
>
> Best,
> Jake
> _______________________________________________
> Noisebridge-discuss mailing list
> Noisebridge-discuss at lists.noisebridge.net
> https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss
>
More information about the Noisebridge-discuss
mailing list