[CentOS] Self-signed certificates

Tue Jan 24 03:18:46 UTC 2006
Thomas E Dukes <edukes at alltel.net>

 

> -----Original Message-----
> From: centos-bounces at centos.org 
> [mailto:centos-bounces at centos.org] On Behalf Of Jeff Lasman
> Sent: Monday, January 23, 2006 9:51 PM
> To: CentOS mailing list
> Subject: Re: [CentOS] Self-signed certificates
> 
> On Monday 23 January 2006 05:44 pm, Thomas E Dukes wrote:
> 
> > I'm not trying to be cheap but this is a crock!  128 bit is 128 bit!
> > Browsers should be able to recognize the encryption method, not the 
> > name.  I mean, that's what its all about.
> 
> Hmmmm... You've lost me again <frown>.
> 
> If you mean cert distributors, you can buy certs for about 
> $10 from GoDaddy, and yes, browsers recognize them.

Is that with their hosting package or can you buy it outright?  And browsers
will accept them without a "security alert"?

> 
> If you mean the browser should recognize the cert as a cert 
> and not care about the name it's issued for, that can't work 
> because the purpose of a cert is to guarantee you're talking 
> to whom you think you're talking to.  So the domain name has 
> to be in there.

The name I was referring to was the issuing authority not the domain name
for which it was issued to.
> 
> Jeff
> --
> Jeff Lasman, Nobaloney Internet Services
> 1254 So Waterman Ave., Suite 50, San Bernardino, CA  92408 
> Our blists address used on lists is for list email only Phone 
> +1 909 266-9209, or see: "http://www.nobaloney.net/contactus.html"
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>