Re: Certificates?

This WebDNA talk-list message is from

2005


It keeps the original formatting.
numero = 60931
interpreted = N
texte = Yes you can actually issue your own certs. You can create them from a Windows server if you have the correct software installed, or from a Linux box. The basic SSL directions for Apache explain how to issue your own certs. You are correct about the "unknown source" issue. Of course if you are running your own intranet/extranet you could issue your own cert just for security reasons. But if you are collecting private information from random visitors it is best to have a cert issued by an internationally recognized CA source. I find that most Internet users still don't understand Internet security, but the 1000 or so users of one of my secure sites always freak out when they get a security popup. They don't bother reading it, they just see "security risk" and they click the cancel button then call to complain. In a nutshell, if you are doing something for a small private audience go ahead and issue your own cert. If you are going to collect information from the public, get a cert issued by a reputable company. I am a reseller of Thawte. I find they have reasonable discounted prices. It didn't cost me anything to be come a reseller. Matt Perosi Psi Prime, Inc. Kenneth Grome wrote: >> If you have more than a dozen domains, being a reseller is a big gain >> (not just the ability to issue certs to yourself in under 10 minutes). > > > > > Isn't it possible for me to create my own SSL certificate for free? > > What I mean is, doesn't Apache (for example) have a mechanism that > lets me create my own certificate so my visitors can use https when > visiting certain pages ... without my being obligated to spend one > hundred or five hundred bucks for "someone else" to issue me a > certificate? > > I understand that a certificate from an "unknown source" such as > myself might not satisfy everybody, but if it's good enough for my web > site visitors then can't I still do it myself for free? > > A follow up question of course is ... which web servers can this be > done on, and how is it done? > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: Certificates? ( Kenneth Grome 2005)
  2. Re: Certificates? ( Jim Lanford 2005)
  3. Re: Certificates? ( Donovan Brooke 2005)
  4. Re: Certificates? ( Stuart Tremain 2005)
  5. Re: Certificates? ( Bob Minor 2005)
  6. Re: Certificates? ( Matthew A Perosi 2005)
  7. Re: Certificates? ( Stuart Tremain 2005)
  8. Certificates? ( Kenneth Grome 2005)
  9. Gift Certificates? Any one have suggestions? (Clayton 2000)
Yes you can actually issue your own certs. You can create them from a Windows server if you have the correct software installed, or from a Linux box. The basic SSL directions for Apache explain how to issue your own certs. You are correct about the "unknown source" issue. Of course if you are running your own intranet/extranet you could issue your own cert just for security reasons. But if you are collecting private information from random visitors it is best to have a cert issued by an internationally recognized CA source. I find that most Internet users still don't understand Internet security, but the 1000 or so users of one of my secure sites always freak out when they get a security popup. They don't bother reading it, they just see "security risk" and they click the cancel button then call to complain. In a nutshell, if you are doing something for a small private audience go ahead and issue your own cert. If you are going to collect information from the public, get a cert issued by a reputable company. I am a reseller of Thawte. I find they have reasonable discounted prices. It didn't cost me anything to be come a reseller. Matt Perosi Psi Prime, Inc. Kenneth Grome wrote: >> If you have more than a dozen domains, being a reseller is a big gain >> (not just the ability to issue certs to yourself in under 10 minutes). > > > > > Isn't it possible for me to create my own SSL certificate for free? > > What I mean is, doesn't Apache (for example) have a mechanism that > lets me create my own certificate so my visitors can use https when > visiting certain pages ... without my being obligated to spend one > hundred or five hundred bucks for "someone else" to issue me a > certificate? > > I understand that a certificate from an "unknown source" such as > myself might not satisfy everybody, but if it's good enough for my web > site visitors then can't I still do it myself for free? > > A follow up question of course is ... which web servers can this be > done on, and how is it done? > ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Matthew A Perosi

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Help formatting search results w/ table (1997) email address scrambling (2002) embedded search vs. URL (2004) passing cart value (2003) Emailer (1997) emailer (1997) Calculating multiple shipping... (1997) [BULK] [WebDNA] A new commerce system for v7+ (2011) Extra equals signs with IE? (More debugging questions...) (1997) Document Contains No Data! (1997) Country & Ship-to address & other fields ? (1997) Re:Dumb Question about Docs (1997) Tiny feature request (2000) Text data with spaces in them... (1997) Re:quit command on NT (1997) Replace Statement (1997) Re[2]: Balancing randomness (2000) [shownext max (1997) Formulas.db + Users.db (1997) problems with 2 tags (1997)