From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.50) id 1Ec85Z-000826-2H for garchives@archives.gentoo.org; Tue, 15 Nov 2005 21:11:37 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.5/8.13.5) with SMTP id jAFLA63x000450; Tue, 15 Nov 2005 21:10:06 GMT Received: from jason.comodo.net (firewall2.comodogroup.com [195.92.253.138]) by robin.gentoo.org (8.13.5/8.13.5) with ESMTP id jAFL3nDk029065 for ; Tue, 15 Nov 2005 21:03:49 GMT Received: (qmail 30844 invoked by uid 1114); 15 Nov 2005 21:03:48 +0000 Received: from robbie.comodo.net (HELO robbie.comodo.net) (192.168.30.202) by jason.comodo.net (qpsmtpd/0.28) with ESMTP; Tue, 15 Nov 2005 21:03:48 +0000 Received: (qmail 2419 invoked from network); 15 Nov 2005 21:03:47 +0000 Received: from gimli.home.gaima.co.uk (192.168.22.230) by 192.168.30.201 with SMTP; 15 Nov 2005 21:03:47 +0000 Received: (qmail 27542 invoked from network); 15 Nov 2005 21:03:43 +0000 Received: from localhost (127.0.0.1) by localhost with SMTP; 15 Nov 2005 21:03:43 +0000 From: Mike Williams To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] OT - SSL certificate authorities Date: Tue, 15 Nov 2005 21:03:41 +0000 User-Agent: KMail/1.8.3 References: <437A4861.7050500@gmail.com> In-Reply-To: <437A4861.7050500@gmail.com> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200511152103.43017.mike@gaima.co.uk> X-Archives-Salt: 3dc441f7-f4c3-42a5-ba6b-8043a74d6747 X-Archives-Hash: 1d62a04e138ce4e250468f7f56a7c07d On Tuesday 15 November 2005 20:43, Antoine wrote: > We are going to set up ssl on a webserver at work and I guess that means > we need a certificate... does anyone have any useful alternatives to > Verisign? Are they really worth the name? > We are not going to be doing any monetary transactions but our clients > are very security conscious (who isn't!) and I have no experience in > these matters. I am certain the boss will want verisign, as he buys a > lot of stuff just for the name but if I can offer him a comparable > alternative at a fraction of the cost he may go for it. If these clients *know* you, and *trust* you, and know anything about security, there is no reason why you couldn't get away with a self-signed cert. If not, http://www.instantssl.com/ Yes, I work for them. No, I won't make any comment comparing us to anyone else. No, I can't get you, or anyone else, a discount. No, I can't give you any support, tell you anything about the internal workings, or disclose any detail on security procedures. -- Mike Williams -- gentoo-user@gentoo.org mailing list