* Joseph Morgan <josephmmorgan@xxxxxxxxxxx> [2009-07-22 17:47]: > In the cert world, your customers would likely rather see that your > certs are signed by Verisign than by > "pimpmycert.com" As if they could tell the difference. If both root CAs are in the browser's root chain, why shouldn't they trust a certificate signed by pimpmycert.com as well? If the only competitive edge your business has is the brand recognition of the CA that signed your webserves public key you're in trouble. @André: By all means get a commercial cert with decent browser coverage and be done with it. The money spent (see previous mails) is nothing compared to getting "hundreds of customers" to accept your homegrown CA (and manage that in the future, as well), -peter --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|