Not to mention that Verisign itself isn't perfect. Remember when they issued two Microsoft certs to someone who wasn't from microsoft? Now that was *almost* funny. :-)
It just goes to show you... nobody is safe all the time. -Novak ----- Original Message ----- From: "Brian Scandale" <[EMAIL PROTECTED]> To: "CF-Talk" <[EMAIL PROTECTED]> Sent: Friday, October 25, 2002 3:16 AM Subject: Re: OT cheap SSL > And don't forget, just because Verisign says that they are truly who they are does not make them safe. Lots of bad actors acting with impunity outside the jurisdiction of the Western justice system. > > At 02:22 AM 10/25/02, you wrote: > >Chris Kief wrote: > > > >> These guys are fantastic. A variety of different certs to suit your > >> needs plus excellent customer service and fast turnaround (they have > >> one that's $119 and emailed to you within a few minutes). > >> > >> http://www.geotrust.com > > > >Certificates serve both the purpose of securing a connection and > >identifying the operator of a server. Just any certificate will be > >sufficient to secure a connection, you can just use a self-issued > >certificate for that. However, to identify the operator the CA has to > >establish the identity of the person that asks for a certificate. > >Since I don't believe they can positively identify you to be the person > >you say to be within a few minutes I consider them insecure and have > >deleted their CA signing cert from my system. > > > >Thanx for the warning, > > > >Jochem > > > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk FAQ: http://www.thenetprofits.co.uk/coldfusion/faq This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting.
