Re: SSL Certs

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 50803
interpreted = N
texte = Michael Davis wrote:> I've had a cert from Thawte for several years. I understand how that > works. What I am not sure of is the self-signed cert business. Can I > run a secure server with a self signed cert? Well, I know I can, but > what happens on the visitor's end?> I assume they get a warning message > of some kind?yep. Microsoft seems to have the scariest messages. *warning* this is not a recognized.... blah blah.> I assume that if they accept the message, that the > connection is encrypted and as secure as any other SSL connection using > a third party verifier such as Verisign, TuCows, or Thawte (not that > the merchant is guaranteed reputable, just that the connection is as > secure). Am I close?Well, I think different companies do different things. I don't know the depths of it but I have heard that verisign for example, checks against the validity of the business requesting the cert and that this info is available to the visitor. anyone? (thus giving a visitor better assurance that this businessis who it says it is.)> What roadblocks stand in the way of one person's > providing a secure connection to their server visitors and another > person who wants to visit that site securely? Is it all a matter of > the verification and assurance process that the Verisigns of the world > provide? Is there anything more that keeps secure connections from > being commonplace and freely establish-able from the web hosting > perspective? I know that browsers have built-in root cert knowledge. > How does that play into the equation?no nasty message on known providers.just go visit the different cert sites and read what kind of assurance they provide. All my info comes from perusing Web* debates on the topic, half paying attention sort of thing but it sounds like there is more to a reputable cert provider than a secure connection.Donovan> > > Thanks, > Mike ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Stuart Tremain 2014)
  2. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Dan Strong 2014)
  3. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Stuart Tremain 2014)
  4. [WebDNA] [OT] Multiple SSL certs on same server? (Dan Strong 2014)
  5. Re: [WebDNA] [OT] economical reliable SSL certs? (Kenneth Grome 2009)
  6. Re: [WebDNA] [OT] economical reliable SSL certs? (Bob Minor 2009)
  7. Re: [WebDNA] [OT] economical reliable SSL certs? (bharrington@1choicerealty.com 2009)
  8. Re: [WebDNA] [OT] economical reliable SSL certs? (Stuart Tremain 2009)
  9. Re: [WebDNA] [OT] economical reliable SSL certs? (Donovan Brooke 2009)
  10. Re: [WebDNA] [OT] economical reliable SSL certs? (Marc Thompson 2009)
  11. Re: [WebDNA] [OT] economical reliable SSL certs? (William DeVaul 2009)
  12. Re: [WebDNA] [OT] economical reliable SSL certs? (Jeffrey Jones 2009)
  13. Re: [WebDNA] [OT] economical reliable SSL certs? (bharrington@1choicerealty.com 2009)
  14. Re: [WebDNA] [OT] economical reliable SSL certs? (Christer Olsson 2009)
  15. [WebDNA] [OT] economical reliable SSL certs? (Donovan Brooke 2009)
  16. Re: OT: SSL Certs ( Rupert Ravens 2005)
  17. Re: OT: SSL Certs ( Bob Minor 2005)
  18. Re: OT: SSL Certs ( Daryl Mitchell 2005)
  19. Re: OT: SSL Certs ( "paul" 2005)
  20. Re: OT: SSL Certs ( Donovan Brooke 2005)
  21. Re: OT: SSL Certs ( devaulw@onebox.com 2005)
  22. OT: SSL Certs ( Larry Hewitt 2005)
  23. Re: SSL Certs (Kenneth Grome 2003)
  24. Re: SSL Certs (Bob Minor 2003)
  25. Re: SSL Certs (Michael Davis 2003)
  26. Re: SSL Certs (Kenneth Grome 2003)
  27. Re: SSL Certs (Donovan home EHG 2003)
  28. SSL Certs (Michael Davis 2003)
Michael Davis wrote:> I've had a cert from Thawte for several years. I understand how that > works. What I am not sure of is the self-signed cert business. Can I > run a secure server with a self signed cert? Well, I know I can, but > what happens on the visitor's end?> I assume they get a warning message > of some kind?yep. Microsoft seems to have the scariest messages. *warning* this is not a recognized.... blah blah.> I assume that if they accept the message, that the > connection is encrypted and as secure as any other SSL connection using > a third party verifier such as Verisign, TuCows, or Thawte (not that > the merchant is guaranteed reputable, just that the connection is as > secure). Am I close?Well, I think different companies do different things. I don't know the depths of it but I have heard that verisign for example, checks against the validity of the business requesting the cert and that this info is available to the visitor. anyone? (thus giving a visitor better assurance that this businessis who it says it is.)> What roadblocks stand in the way of one person's > providing a secure connection to their server visitors and another > person who wants to visit that site securely? Is it all a matter of > the verification and assurance process that the Verisigns of the world > provide? Is there anything more that keeps secure connections from > being commonplace and freely establish-able from the web hosting > perspective? I know that browsers have built-in root cert knowledge. > How does that play into the equation?no nasty message on known providers.just go visit the different cert sites and read what kind of assurance they provide. All my info comes from perusing Web* debates on the topic, half paying attention sort of thing but it sounds like there is more to a reputable cert provider than a secure connection.Donovan> > > Thanks, > Mike ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Donovan home EHG

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

WebCatalog Use Question (1997) Great product and great job ! (1997) WebDNA-Talk Digests (1997) WebCatalog can't find database (1997) send people in a database an email (2001) Digest Version (2000) too many nested tags ... (1997) WCS Newbie question (1997) tag request (1999) Using Plug-In while running 1.6.1 (1997) Help! WebCat2 bug (1997) possible, WebCat2.0 and checkboxes-restated (1997) UPS Calculator (2003) Windows version Trouble Shooting (2007) type 2 errors with ssl server (1997) pop up menu's (1998) PIXO support (1997) Newbie questions (1999) WebCatalog for Mac 2.0.1 Released (1997) NetCloak, FireSite and PIXO (2000)