Date: Tue, 22 Oct 2002 12:04:15 -0400 From: Larry Sica <lomifeh@earthlink.net> To: Brett Glass <brett@lariat.org> Cc: "Kevin D. Kinsey, DaleCo, S.P." <kdk@daleco.biz>, ulf@Alameda.net, freebsd-chat@FreeBSD.ORG Subject: Re: Verisign, Thawte, Entrust, whom? Message-ID: <E9E27806-E5D7-11D6-ABF5-000393A335A2@earthlink.net> In-Reply-To: <4.3.2.7.2.20021021195034.02b20c70@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
On Monday, October 21, 2002, at 09:53 PM, Brett Glass wrote: > At 03:24 PM 10/21/2002, Kevin D. Kinsey, DaleCo, S.P. wrote: > >> Ulf, I happened to google far enough to hit >> "GeoTrust," and will be looking hard at >> that ... less than half of VeriSign...that is, >> unless I can figure out what Brett DOES >> do in this regard... :-) > > Well, it's hard to imagine that having a certificate > from Verisign would engender any real trust. After > all, they're a would-be monopolist, are under > investigation for mail fraud, and have ripped off > tens of thousands of domain name registrants for > years. > Ok, what about all the other SSL cert providers? When Ma Bell was found to be a monopoly did you stop using the phone? > We just warn users that a window will pop up, and > tell them that by accepting our certificate they'll > be assured of secure communications with us in the > future. It works. > Doesn't this kind of defeat the purpose to a degree of using certificates. One wants a third party CA so people will be able to trust your site. Personally if I get that warning I won't use the site because I do not know if they are who they say they are. To get a cert you need proof that your company is who it says it is and that is it a legal company. It is not just some schlep saying I want to buy one. --Larry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E9E27806-E5D7-11D6-ABF5-000393A335A2>