[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [SAGE] Are cheap SSL certificates legitimate?

To: sage-members@sage.org
Subject: Re: [SAGE] Are cheap SSL certificates legitimate?
From: Jonathan Billings <billings@negate.org>
Date: Fri, 19 Jan 2007 15:35:58 -0500
In-Reply-To: <55E31D63-F9CA-47B9-B503-3072C11D2F0A@stanford.edu>
References: <9516.1169229868@mental.com> <20070119135352.E38307@aphrodite.acf.aquezada.com> <D0AA9836-467D-4F89-8767-C8620F28B41B@stanford.edu> <45B125F8.8050307@negate.org> <55E31D63-F9CA-47B9-B503-3072C11D2F0A@stanford.edu>
Sender: owner-sage-members@usenix.org
User-Agent: Thunderbird 1.5.0.9 (X11/20061220)

Sandor W. Sklar wrote:
>> If you're installing a certificate chain file to support a 
>> certificate, and this is only for a internal site, there's no point 
>> buying a $70 SSL cert when you can make your own for free.
> 
> they aren't for internal sites.

Of course, for public-facing sites, you'll want to consider paying for a 
certificate that is already in the client's web client.  Since you're 
requiring the end user to install a certificate chain, it really isn't 
much better than using your own SSL root certificate -- it'll require a 
minor hassle for the user.

The original poster's email indicated that it *was* for an internal site 
(and that's why I qualified it as such).  No point paying for something 
when the free alternative requires the same procedure.

-- 
Jonathan Billings <billings@negate.org>

Follow-Ups:
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: Wil Cooley <wcooley@nakedape.cc>
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: "Philip J. Hollenback" <philiph@pobox.com>

References:
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: Alexander Lobodzinski <lobo@mental.com>
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: "Julian C. Dunn" <jdunn@aquezada.com>
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: "Sandor W. Sklar" <ssklar@stanford.edu>
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: Jonathan Billings <billings@negate.org>
- Re: [SAGE] Are cheap SSL certificates legitimate?
  - From: "Sandor W. Sklar" <ssklar@stanford.edu>

Prev by Date: Re: [SAGE] Are cheap SSL certificates legitimate?
Next by Date: [SAGE] Budget pricing
Prev by thread: Re: [SAGE] Are cheap SSL certificates legitimate?
Next by thread: Re: [SAGE] Are cheap SSL certificates legitimate?
Index(es):
- Date
- Thread