[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Self-signed certificate behavior.
From: |
Gervase Markham |
Subject: |
Re: Self-signed certificate behavior. |
Date: |
Mon, 11 Aug 2008 12:22:32 +0100 |
User-agent: |
Thunderbird 3.0a1 (X11/2008050714) |
Giuseppe Scrivano wrote:
> do you think it is possible to have these changes directly in Mozilla
> Firefox? Self-signed certificates, IMHO, should be handled in a less
> scaring way for users because as Nat already showed, they are not less
> secure than unencrypted sites.
Please see this blog post:
http://blog.johnath.com/2008/08/05/ssl-question-corner/
for the rationale behind the current UI. In the comments, Jesse Ruderman
links to an explanation of why we can't just treat self-signed like
http, or switch to an SSH-like model.
http://robert.accettura.com/blog/2008/07/19/unobstructed-https/#comment-386085
> To all: does anybody know of an open certificate authority which issues
> certificates for free? There is really need for such service?
http://www.startssl.com/
Gerv