Discuss mailing list

[kevin <krattai AT gmail.com>]

I am up for this and agree with both Stas and Jonah:

On Sun, 2016-11-20 at 17:21 +0500, Stas wrote:
> I known one solution: the blockchain.
> FYI: OpenNIC used the domain zones from the blockchains Namecoin
(.bit) and 
> Emercoin (.lib, .coin, ...). The emercoin blockchain also implements
<snip>

On Sun, 2016-11-20 at 08:37 -0600, Jonah Aragon wrote:
> 
> > We could (and probably should) roll our own CA for OpenNIC TLDs,
> perhaps with an intermediate for each TLD or something and then give
> out those certs (ideally together with the registrations of the
> domains). When someone goes on to configure their DNS to OpenNIC
> servers it shouldn't be much harder to also add a trusted CA to their
> certificate store.
> 
> This was my thought on the IRC channel and I think it's the best
> option we have for distributing certificates. 
> 
> While adding a CA requires trust from the user, so does changing DNS
> servers, since we could potentially redirect google.com, paypal.com,
> or any other domain to wherever we'd like. The OpenNIC community is
> built on trust and it's worked out so far. If it ever comes down to a
> vote whether or not we make a CA, I'd definitely vote yes. 
> 
> Jonah
> 
> 
> --------
> You are a member of the OpenNIC Discuss list. 
> You may unsubscribe by emailing discuss-unsubscribe AT lists.opennicproject.org

-- 
http://ca.linkedin.com/in/kevinrattai/

https://plus.google.com/+KevinRattai/

https://community.spiceworks.com/people/kevinrattai



--------
You are a member of the OpenNIC Discuss list. 
You may unsubscribe by emailing discuss-unsubscribe AT lists.opennicproject.org