| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20080917090751.7c6777dc@wssyg122.sygroup-int.ch>
Date: Wed, 17 Sep 2008 09:07:51 +0200
From: Tonnerre Lombard <tonnerre.lombard@...roup.ch>
To: "James Matthews" <nytrokiss@...il.com>
Cc: Xia Shing Zee <xiashing@...il.com>, full-disclosure@...ts.grok.org.uk
Subject: Re: Invalid Certificate
Salut, James,
On Tue, 16 Sep 2008 20:38:47 -0700, James Matthews wrote:
> Ask secunia to pay for the proper ssl
https://www.cacert.org/ might as well be appropriate and is nowadays
supported by most distributions of Linux (though not turned on by
default for some obscure reason? One has to dpkg-reconfigure
ca-certificates. Maybe someone from the Debianist camp can enlighten us
on why?)
I personally think that it also has the better trust model; I trust
people more if they have been assured by a number of geeks than if they
simply had the money to pay for a certificate[1].
But whatever suits you.
Tonnerre
[1]: Apart from the fact that it seems that not all pay-by-cert
"authorities" are recognized either; I also had problems
with expensive wildcard certificates not being recognized as
signed by a proper CA. You learn who to trust pretty quickly.
--
SyGroup GmbH
Tonnerre Lombard
Solutions Systematiques
Tel:+41 61 333 80 33 Güterstrasse 86
Fax:+41 61 383 14 67 4053 Basel
Web:www.sygroup.ch tonnerre.lombard@...roup.ch
Download attachment "signature.asc" of type "application/pgp-signature" (833 bytes)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists