Re: Seeking officers for Free-software-friendly CA

Leland V. Lammert Tue, 4 Jan 2000 15:52:49 -0800

At 01:22 PM 1/4/00 , you wrote:
>One solution to the fact that the new CA is not embed in IE nor Netscape is
>to:
>
>  <snipped for bevity>
>
>Nicolas Roumiantzeff.

Nicolas,

One problem with this scenario - the user is still essentially trusting YOUR server 
instead of the CA. By trusting your server to install the proper CERT you are no worse 
(to the user) than using a self-signed CERT (which we do).

         Lee
============================================
    Leland V. Lammert                                [EMAIL PROTECTED]
       Chief Scientist                         Omnitec Corporation
   Network/Internet Consultants              www.omnitec.net
============================================
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Re: Seeking officers for Free-software-friendly CA

Reply via email to