On Sat, 2005-02-05 at 00:33, Nalin Dahyabhai wrote: > On Fri, Feb 04, 2005 at 04:25:12PM +0000, Joe Orton wrote: > > 3. increasing number of daemon packages are creating self-signed > > certs in %post scripts; could/should this be unified? [snip] > Those self-signed certificiates are becoming less and less useful as > applications move toward properly verifying certificates. Could be a problem to assume this, as self-signed certificates does not require a CA - that'll pick some bucks from you to sign your certificates - and it's sure self-signed certificates will be hanging around for a while, because they're cheaper than CA signed ones. Even in web servers self-signed certificates are being deployed, despite the browser certificate error dialogs that are show when you visit those web sites. Regards. -- Iago Rubio
