> -----Original Message----- > From: news [mailto:news@xxxxxxxxxxxxx] On Behalf Of Nicholas Sherlock > > > > Jfyi: you might also try free and not widely recognized, > > http://cacert.org/ > > Won't certificates signed by them be only useful for > internally-deployed > apps? They're not a trusted root on Windows so random browsers on the > web will just get an "UNTRUSTED SITE! Get me out of here!" message. Hopefully... It's worth remembering what a certificate is for; it is a document, undersigned by a third-party, that confirms that you are who you say you are. The third-party certificate signing authority is putting their reputation on the line and has a moral (even a legal) obligation to be certain you are bona fide. A certificate is not some random obstacle that makes SSL websites pesky to set up - it is an essential security feature that protects web-users from fraud. So, of course it should cost you (as e-commerce operator) money and effort. Trying to get a cheap cert for your site is like a bus company getting cheap tyres for their buses... Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > Cheers, > Nicholas Sherlock > > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP > Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx > " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx > > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. The sender's company reserves the right to monitor all e-mail communications through their networks. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|