[OTR-users] wiretapping
Ian Goldberg
ian at cypherpunks.ca
Sat Jun 18 17:10:09 EDT 2005
On Mon, Jun 13, 2005 at 10:15:07AM -0400, Greg Troxel wrote:
> The possibility -- and ease of mounting - of a service provider MITM
> attack is a strong argument for viewing unconfirmed signing keys as an
> 'uneasy' rather than 'good' state.
Right.
> Perhaps the OTR distribution should have a jabber server module to
> MITM OTR, in the same spirit as the forgery toolkit.
This is a _fantastic_ idea. But it'll have to fall to someone else. It
should be too hard, if someone wants to give it a shot.
- Ian
More information about the OTR-users
mailing list