Cheap and fast certs.

Jason Holt jason at lunkwill.org
Sun Feb 19 22:31:22 MST 2006


On Sun, 19 Feb 2006, Gabriel Gunderson wrote:

> On Sun, 2006-02-19 at 20:23 -0700, Derek Carter wrote:
>> if all you want is encription then why not roll your own CA?
>> http://sandbox.rulemaker.net/ngps/m2/howto.ca.html
>
> That works for most of my stuff but this requires it to work without any
> pop up boxes asking to check out the cert.

Yeah, that's the important distinction.  Users should be suspicious of any 
site for which their browser pops up cert-related dialogs.  If you can get a 
cert that doesn't raise flags on the popular browsers, very few people will 
complain.  (Oh, and don't go redirecting from http://yourstore.com to 
https://somedomaintheyveneverheardof.kr for the checkout page...)

 						-J



More information about the PLUG mailing list