A blacklist-based approach seems like a bad idea for security. | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		JoshTriplett on Aug 30, 2011 \| parent \| context \| favorite \| on: Gmail.com being MITM'd by Iran using this certific... A blacklist-based approach seems like a bad idea for security.

tptacek on Aug 30, 2011 [–]

Blacklists are bad in authorization scenarios. But we're talking about authentication and trust.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact