Author: Mike Hearn 2013-12-31 14:23:55
Published on: 2013-12-31T14:23:55+00:00
It appears that a site was moved onto a dedicated server temporarily and it melted down under the load, indicating some progress. The load that caused the melt down is not specified. One person argues that Drak's threat model is not improved by SSL but rather by increasing the use of signature checking. However, someone else points out that TLS does raise the bar and is worth doing. They reference Applebaum's talk, where he pushes TLS hard and states that based on their access to source docs, some MITM attacks can't beat TLS. They also mention that hosting downloads on AppEngine or something similar may be a solution if a server that can handle high load and TLS cannot be found.
Updated on: 2023-06-07T21:57:20.298469+00:00