Thanx William...
All your answers were bang-on...
I will dig up a printible version of the contract and make it available on
the certs.tucows.com website.
Darryl Green
[EMAIL PROTECTED]
Product Manager Web Certificates
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of William X. Walsh
> Sent: Wednesday, April 11, 2001 2:07 AM
> To: Jennifer
> Cc: [EMAIL PROTECTED]
> Subject: Re[2]: Certs
>
>
> Hello Jennifer,
>
> Tuesday, April 10, 2001, 10:32:18 PM, Jennifer wrote:
>
>
> >> > 1) I just went to https://certs.tucows.com/ and my browser
> Netscape 4.7
> >> > said that it did not recognize the authority that signed the
> certificate.
> >> > Netscape 4.7 is still widely used. I thought that the Certs
> were going to
> >> > be backwards compatible?
> >>
> >>This is probably a configuration issue on the server, the CA cert
> >>chain has to be loaded and configured on that host's configuration for
> >>it to avoid that error. (I'm guessing here based on experience with
> >>Equifax's certs which work similarly)
>
>
> > So this is not an issue of the Cert, but rather the way Tucows
> set it up on
> > their server? Because I got a warning in IE5 too, but I
> noticed that both
> > these are mentioned as supported in the browser chart.
>
> I'm going to say yes, but qualify that by saying that I am basing that
> on my experience with Equifax, which uses a similarly countersigned CA
> cert, and will bow to Mr Green's answer on this, if he has a different
> one than I :)
>
> >> > 4) Can we now or we will be able to in the future get wild
> card Certs? So
> >> > that I can use one Cert for any number of sub-domains?
> >>
> >>I looked on Entrust's own site, and don't see wildcard certs offered.
> >>I don't think Verisign offers them either (well they do through Thawte
> >>still, but I imagine that will go very soon since that was in place
> >>before the acquisition).
>
>
> > Hmm. I didn't realize that they weren't offered by Verisign either. My
> > host uses one and gives me a sub-domain on their secure sever.
> Does that
> > mean that they will lose that ability? I was hoping to be able to do
> > wildcard certs to be able to offer my hosting clients the same set up.
>
> Well, Equifax is offering them. So I think the option will still
> exist. I am predicting Thawte getting rid of them only because of
> comments made just after the acquisition by people at Thawte who
> indicated that Verisign saw that as one thing that they would most
> likely change, since it makes Verisign's own certs that much less
> competitive.
>
> > Another question about these certs. They are 128-bit right?
> But will they
> > still work in a browser that only supports 40-bit strength?
>
> It should, yes.
>
> > Also, the agreement that I agreed to online for selling certs, is that
> > available in a printable format somewhere?
>
> Darryl?
>
> --
> Best regards,
> William mailto:[EMAIL PROTECTED]
>
>
