Date: Mon, 21 Oct 2002 20:21:10 -0700 From: Benjamin Krueger <benjamin@seattleFenix.net> To: Brett Glass <brett@lariat.org> Cc: "Kevin D. Kinsey, DaleCo, S.P." <kdk@daleco.biz>, ulf@Alameda.net, freebsd-chat@FreeBSD.ORG Subject: Re: Verisign, Thawte, Entrust, whom? Message-ID: <20021022032110.GF604@surreal.seattlefenix.net> In-Reply-To: <4.3.2.7.2.20021021195034.02b20c70@localhost> References: <031601c2792f$34e371a0$fa00a8c0@DaleCoportable> <20021021121147.G27297@seven.alameda.net> <4.3.2.7.2.20021021195034.02b20c70@localhost>
next in thread | previous in thread | raw e-mail | index | archive | help
* Brett Glass (brett@lariat.org) [021021 18:54]: > At 03:24 PM 10/21/2002, Kevin D. Kinsey, DaleCo, S.P. wrote: > > >Ulf, I happened to google far enough to hit > >"GeoTrust," and will be looking hard at > >that ... less than half of VeriSign...that is, > >unless I can figure out what Brett DOES > >do in this regard... :-) > > Well, it's hard to imagine that having a certificate > from Verisign would engender any real trust. After > all, they're a would-be monopolist, are under > investigation for mail fraud, and have ripped off > tens of thousands of domain name registrants for > years. > > We just warn users that a window will pop up, and > tell them that by accepting our certificate they'll > be assured of secure communications with us in the > future. It works. > > --Brett Thus rendering useless half of the purpose of Secure Certificates. Oh sure, your customers get secure (128bits!) communications with an HTTPS server. "An" HTTPS server, but possibly not "your" HTTPS server. So much for that whole verified identity via trusted 3rd party thing... -- Benjamin Krueger ---------------------------------------------------------------- Send mail w/ subject 'send public key' or query for (0x251A4B18) Fingerprint = A642 F299 C1C1 C828 F186 A851 CFF0 7711 251A 4B18 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20021022032110.GF604>