On Wed, 1 Jun 2011 14:51:42 +
Kevin Chadwick wrote:
> Can someone confirm that they have a default Opera working with a
> startcom ssl certificate via relayd.
Does anyone know if Iphones should work too? Though i don't know if
they even have the root cert.
On Thu, 24 Feb 2011 13:05:09 -0300
Hugo Osvaldo Barrera wrote:
> http://www.startssl.com/
> Why pay if you can have one for free trusted by every major browser?
> Sure, the "class 2" ones are pay-for, but the free one works as well as
I have it working on relayd with a clean firefox profile autom
On Tue, Mar 22, 2011 at 05:33:01PM +0200, Ciprian Dorin Craciun wrote:
> >> CA's cannot be trusted to even pay attention to carefully securing
> >> your certificate. B Here in the US, the government can simply ask
> >> for your certificate and get it ( and possibly even use it to
> >> impersonate y
On Wed, Feb 23, 2011 at 15:51, Olivier Mehani wrote:
> Just some OT thoughts.
>
> On Wed, Feb 23, 2011 at 07:35:19AM -0600, Chris Bennett wrote:
>> CA's cannot be trusted to even pay attention to carefully securing
>> your certificate. B Here in the US, the government can simply ask for
>> your ce
Am 28.02.2011 um 03:10 schrieb Hugo Osvaldo Barrera:
> You CAN submit the CSR through the web interface.
Nobody doubted that.
--
Jonathan
[demime 1.01d removed an attachment of type application/pgp-signature which had
a name of PGP.sig]
On 26/02/11 19:21, Jonathan Schleifer wrote:
> Am 24.02.2011 um 18:34 schrieb Hugo Osvaldo Barrera:
>
>> I use their web interface to generate them. It gets stuck sometime, buy
>> usually works. (Yeah, it's definitely not the best).
>
> Letting them generate one is a stupid idea - then they got
Am 24.02.2011 um 18:34 schrieb Hugo Osvaldo Barrera:
> I use their web interface to generate them. It gets stuck sometime, buy
> usually works. (Yeah, it's definitely not the best).
Letting them generate one is a stupid idea - then they got your private key.
Better is it to just send them a CSR.
On 02/24/2011 01:50 PM, Chris Bennett wrote:
>> http://www.startssl.com/
>> Why pay if you can have one for free trusted by every major browser?
>> Sure, the "class 2" ones are pay-for, but the free one works as well as
>> a self-signed one (except for the "CA sells out like paypal" idea, which
>>
On 02/24/11 17:50, Chris Bennett wrote:
>> http://www.startssl.com/
>> Why pay if you can have one for free trusted by every major browser?
>> Sure, the "class 2" ones are pay-for, but the free one works as well as
>> a self-signed one (except for the "CA sells out like paypal" idea, which
>> I adm
> http://www.startssl.com/
> Why pay if you can have one for free trusted by every major browser?
> Sure, the "class 2" ones are pay-for, but the free one works as well as
> a self-signed one (except for the "CA sells out like paypal" idea, which
> I admit is possible, though, in the US, the govern
On 02/24/2011 11:59 AM, Chris Bennett wrote:
> I am going to point out another factor in my reasoning:
> Basically, there is no reason to assume that my self-signed certificate is
> any less secure than paying someone who is in a browsers root certificates.
>
> As a contractor in construction, on
I am going to point out another factor in my reasoning:
Basically, there is no reason to assume that my self-signed certificate is any
less secure than paying someone who is in a browsers root certificates.
As a contractor in construction, one article I wrote for my potential customers
is how to
On Thu, 24 Feb 2011 10:16:36 +0100
Marc Espie wrote:
> the fact that most people reuse the same password,
You hear about that now said to be non existent security firm that was
helping the fbi track down a support group of wkileaks called anonymous
and ended up with all their email on wikileaks b
I think your guys are into elaborate schemes and totally forgetting low-level
tech/social engineering attack.
Remember that most people out there don't understand https, they will just see
that little lock and think "I'm secure"... yeah, sure, from 3rd party. But
it's so easy to set up a fake site
On Wed, Feb 23, 2011 at 9:21 AM, Olivier Mehani wrote:
> Just some OT thoughts.
>
> On Wed, Feb 23, 2011 at 07:35:19AM -0600, Chris Bennett wrote:
>> CA's cannot be trusted to even pay attention to carefully securing
>> your certificate. B Here in the US, the government can simply ask for
>> your
Just some OT thoughts.
On Wed, Feb 23, 2011 at 07:35:19AM -0600, Chris Bennett wrote:
> CA's cannot be trusted to even pay attention to carefully securing
> your certificate. Here in the US, the government can simply ask for
> your certificate and get it ( and possibly even use it to impersonate
16 matches
Mail list logo