[OTR-dev] Peer validity TLV
Ola Bini
list at olabini.se
Sat Oct 3 10:34:25 EDT 2015
Hi,
> And, like the somewhat similar question from years ago about "be able to
> query the other side to see if they have logging turned on", your peer
> can simply lie. What security-relevant action would you be taking based
> on this information?
Sigh. For some reason I had convinced myself that lying didn't matter
for the case of whether the other side has verified the key - but of
course it does.
Sorry to waste everyone's time!
Cheers
--
Ola Bini (https://olabini.se)
"Yields falsehood when quined" yields falsehood when quined.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 931 bytes
Desc: not available
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20151003/72d4d32c/attachment.sig>
More information about the OTR-dev
mailing list