Hello Alexey,

 AI>> I say it is secure because it is! Arguing that it isn't is just
 AI>> plain silly.

 AF> No it is not. Thinking that obfuscation equals security is silly.

What obfuscation and/or lack of security do you speak of?

 AI>> We could use some kind of in house certificates in fidonet. We
 AI>> would have to build and maintain all that.

 AF> There are many options. For example, have centralized certificate
 AF> issuer or have pubkeys in nodelist or DNS. The only problem is that
 AF> there is no standard to implement.

If you want that info in the nodelist then the nodelist standard comes into
play. If the nodelist had that info we could look there but that is not the
case.

If my current certificate is not good enough then what would be and why?

 Ttyl :-),
         Al

--- GoldED+/LNX