almet/blog.notmyidea.org
1
0
Fork 0
mirror of https://github.com/almet/notmyidea.git synced 2025-04-28 19:42:37 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add an addendum to the webcrypto article

Browse source
This commit is contained in:
Alexis Métaireau 2015-10-13 16:22:33 +02:00
parent 1d647a6e4e
commit 25909813f2
2 changed files with 13 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
Makefile
View file

@ -4,7 +4,7 @@ build:
$(PELICAN) -s pelican.conf.py content $(PELICAN) -s pelican.conf.py content
upload: build upload: build
rsync -e "ssh -p 22" -P -rvz --delete output/* alexis@172.19.2.119:/home/www/notmyidea.org/blog rsync -e "ssh -p 22" -P -rvz --delete output/* files:/home/www/notmyidea.org/blog
serve: build serve: build
cd output && python -m pelican.server 8000 cd output && python -m pelican.server 8000

12
content/crypto/webcrypto-distribution-signing.rst
View file

@ -117,3 +117,15 @@ this design has many security problems attached to it.
However, that's a problem I would really like to see solved one day, so here However, that's a problem I would really like to see solved one day, so here
the start of the discussion, don't hesitate to `get in touch the start of the discussion, don't hesitate to `get in touch
</pages/about.html>`_! </pages/about.html>`_!
Addendum
========
It seems possible to increase the level a user has in a Web Application by
adding indicators in the User-Agent. For instance, when using an application
that's actually signed by someone considered trustful by the User-Agent (or the
distributor of the User-Agent), a little green icon could be presented to the
User, so they know that they can be confident about this.
A bit like User-Agents do for SSL, but for the actual signature of the files
being viewed.