28 Oct
2008
28 Oct
'08
1:51 p.m.
On Tue, Oct 28, 2008 at 03:40:21PM +0400, Joao Damas <Joao_Damas@isc.org> wrote a message of 20 lines which said:
I was sort of assuming the data itself would be transported over an SSL connection, I just want to make sure I am talking to the right server.
Checking the TLS certificate? Anyway, signing with PGP, if done in a very secure way (unconnected machine, etc) is probably safer since the typical HTTPS setup does not protect if the Web server is compromised.