Re: What Verisign-free CAs are left?
- From: Sebastian Gottschalk <seppi@xxxxxxxxx>
- Date: Fri, 16 Jun 2006 07:42:42 +0200
Quel-y wrote:
Sebastian Gottschalk <seppi@xxxxxxxxx> wrote:
Thawte isn't very trustable either, you can get almost any eMail
certificate from them, even at the highest trust level, without even
revealing your identity.
Actually, I haven't found that at all.
I said "you can", not "you will always". Of course such things happened
in clear violation of their policies, but this is not acceptable for any
default trusted root-CA.
A cheap $20 GoDaddy certificate isn't root-level, but it requires no
identification at all beyond a credit card. Takes five minutes to get. And
most customers using an SSL website with one will never be the wiser.
Point taken. SSL certs today are only good for surpressing warnings on
the client.
.
--
Quel-y is bangpath(at)sent.as ... remove NOSPAM when e-mailing a reply
- Follow-Ups:
- Re: What Verisign-free CAs are left?
- From: Dave (from the UK)
- Re: What Verisign-free CAs are left?
- References:
- What Verisign-free CAs are left?
- From: Greg Pratt
- Re: What Verisign-free CAs are left?
- From: Sebastian Gottschalk
- Re: What Verisign-free CAs are left?
- From: Doug McIntyre
- Re: What Verisign-free CAs are left?
- From: Sebastian Gottschalk
- Re: What Verisign-free CAs are left?
- From: Quel-y
- What Verisign-free CAs are left?
- Prev by Date: Re: Strange Error Log, then FBI?
- Next by Date: Prevx?
- Previous by thread: Re: What Verisign-free CAs are left?
- Next by thread: Re: What Verisign-free CAs are left?
- Index(es):
