Re: [SAGE] Are cheap SSL certificates legitimate?

["Philip J. Hollenback" <philiph@pobox.com>]

On 01/19/07, Jonathan Billings wrote:
> If you're installing a certificate chain file to support a
> certificate, and this is only for a internal site, there's no point
> buying a $70 SSL cert when you can make your own for free.

Right.  I've already decided to buy 'official' certificates (i.e. ones
that are already included in the standard browsers.  I wish that
cacert.org certificates were included in Firefox but apparently that
is a real can of worms.

> If the clients using the internal site are using windows and use AD,
> I *believe* there's a way to push out the SSL root through active
> directory.  I've seen it done but haven't ever run my own AD domain.

Doesn't apply for us because we have a mixed linux/windows
environments and multiple clients (Firefox, IE, Outlook, Thunderbird,
etc).

P.

-- 
Philip J. Hollenback
www.hollenback.net