On Tue, Nov 26, 2013 at 4:48 PM, Bruce Momjian wrote:
> Right. I know of no mechanism to verify a certificate via a public CA
> through SSL. Browsers have a list of trusted certificates, but SSL
> alone doesn't, as far as I know.
>
SSL as a library/protocol has mechanisms to verify the certific
On Tue, Nov 26, 2013 at 12:30:08PM -0800, John R Pierce wrote:
> On 11/26/2013 12:16 PM, Robin wrote:
>
> 1. A self-signed certificate can be issued by anybody, there is no way of
> authenticating the issuer.
> 2. Distributing self-signed certificates becomes a pain - if signed b
On 11/26/2013 12:16 PM, Robin wrote:
1. A self-signed certificate can be issued by anybody, there is no
way of authenticating the issuer.
2. Distributing self-signed certificates becomes a pain - if signed
by a CA, its easy to lodge your public key where everybody can
find it, and
There is a downside to self-signed certificates.
1. A self-signed certificate can be issued by anybody, there is no way
of authenticating the issuer.
2. Distributing self-signed certificates becomes a pain - if signed by
a CA, its easy to lodge your public key where everybody can find it,
On Tue, Nov 26, 2013 at 02:18:58PM -0500, Vick Khera wrote:
> Using self-signed certs you can give them longevity of 10+ years, so never
> have to worry about them again :)
Unless of course you turn out to have a weak algorithm and, say, No
Such Agency decides to take up residence on your network.
On Tue, Nov 26, 2013 at 1:31 PM, Bruce Momjian wrote:
> Well, by using a CA you are giving the CA rights to the key, while you
> fully control a self signed key. Since you probably don't expect
> unknown individuals to be connecting to your database, and self signed
> key is recommended.
>
You
On Tue, Nov 26, 2013 at 10:33:47AM -0800, John R Pierce wrote:
> On 11/26/2013 10:24 AM, Jesus Rafael Sanchez Medrano wrote:
>
> Looking to implement SSL. Every tutorial/sample I have found uses self
> signed certificates. Would there be any advantage of using a certificate
> from a CA
On 11/26/2013 10:24 AM, Jesus Rafael Sanchez Medrano wrote:
Looking to implement SSL. Every tutorial/sample I have found uses self
signed certificates. Would there be any advantage of using a
certificate from a CA such as digicertor rapidssl?
depends entirely on your use case.generally,
On Tue, Nov 26, 2013 at 02:24:01PM -0400, Jesus Rafael Sanchez Medrano wrote:
> Looking to implement SSL. Every tutorial/sample I have found uses self signed
> certificates. Would there be any advantage of using a certificate from a CA
> such as digicertor rapidssl?
Well, by using a CA you are giv
Looking to implement SSL. Every tutorial/sample I have found uses self
signed certificates. Would there be any advantage of using a certificate
from a CA such as digicertor rapidssl?
Att.
==
Jesus Rafael Sanchez Medrano
"Life is a dream, of which all must wake up"
10 matches
Mail list logo