-----Original message----- From: Blake Hudson <blake@xxxxxxxx> Sent: Mon 19-11-2012 09:42 Subject: Re: Firefox certificates for Fedora sites? To: users@xxxxxxxxxxxxxxxxxxxxxxx; > That is not how HTTPS works. HTTPS does not require an expensive > commercial CA like Thawte. First, if Fedora/Redhat wanted, they could > include their own CA certificate with their own distribution with no > additional cost (other than the time creating a CA certificate and > including it on their distribution). And if they did so, I, for one, would cease using *any* Red Hat products in perpetuity. It would be a wholly inappropriate betrayal of their user community to sidestep Firefox's CA inclusion process (described at http://www.mozilla.org/projects/security/certs/policy/) for their own minimal benefit. > Second, there are free or low cost > CAs like StartSSL. I believe StartSSL benefits from Redhat, so they may > be willing to give back to the community at no cost for some of the > items they typically charge for. And the StartSSL root meets the requirements for inclusion and is included in modern browsers by default. PK -- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
