Re: SSL Certs

This WebDNA talk-list message is from

2003


It keeps the original formatting.
numero = 50804
interpreted = N
texte = >I've had a cert from Thawte for several years. I understand how >that works. What I am not sure of is the self-signed cert business. >Can I run a secure server with a self signed cert? Well, I know I >can, but what happens on the visitor's end? I assume they get a >warning message of some kind?Correct. >I assume that if they accept the message, that the connection is >encrypted and as secure as any other SSL connection using a third >party verifier such as Verisign, TuCows, or Thawte (not that the >merchant is guaranteed reputable, just that the connection is as >secure). Am I close?Yes. >What roadblocks stand in the way of one person's providing a secure >connection to their server visitors and another person who wants to >visit that site securely?The warning message, and the requirement that the visitor must click past this message to begin the SSL session, and of course the ability of the browser to do SSL. >Is it all a matter of the verification and assurance process that >the Verisigns of the world provide?If the visitor's browser recognizes the verifier's certificate as valid, the visitor doesn't get the warning message. If it doesn't, most browsers can install any certificate authority if the visitor requests it, after which the warning message will no longer appear. >Is there anything more that keeps secure connections from being >commonplace and freely establish-able from the web hosting >perspective?Not sure what you mean here ... -- Sincerely, Kenneth Grome ------------------------------------------------------------- My programmers will write WebDNA code for you at $27 an hour! -------------------------------------------------------------------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Stuart Tremain 2014)
  2. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Dan Strong 2014)
  3. Re: [WebDNA] [OT] Multiple SSL certs on same server? (Stuart Tremain 2014)
  4. [WebDNA] [OT] Multiple SSL certs on same server? (Dan Strong 2014)
  5. Re: [WebDNA] [OT] economical reliable SSL certs? (Kenneth Grome 2009)
  6. Re: [WebDNA] [OT] economical reliable SSL certs? (Bob Minor 2009)
  7. Re: [WebDNA] [OT] economical reliable SSL certs? (bharrington@1choicerealty.com 2009)
  8. Re: [WebDNA] [OT] economical reliable SSL certs? (Stuart Tremain 2009)
  9. Re: [WebDNA] [OT] economical reliable SSL certs? (Donovan Brooke 2009)
  10. Re: [WebDNA] [OT] economical reliable SSL certs? (Marc Thompson 2009)
  11. Re: [WebDNA] [OT] economical reliable SSL certs? (William DeVaul 2009)
  12. Re: [WebDNA] [OT] economical reliable SSL certs? (Jeffrey Jones 2009)
  13. Re: [WebDNA] [OT] economical reliable SSL certs? (bharrington@1choicerealty.com 2009)
  14. Re: [WebDNA] [OT] economical reliable SSL certs? (Christer Olsson 2009)
  15. [WebDNA] [OT] economical reliable SSL certs? (Donovan Brooke 2009)
  16. Re: OT: SSL Certs ( Rupert Ravens 2005)
  17. Re: OT: SSL Certs ( Bob Minor 2005)
  18. Re: OT: SSL Certs ( Daryl Mitchell 2005)
  19. Re: OT: SSL Certs ( "paul" 2005)
  20. Re: OT: SSL Certs ( Donovan Brooke 2005)
  21. Re: OT: SSL Certs ( devaulw@onebox.com 2005)
  22. OT: SSL Certs ( Larry Hewitt 2005)
  23. Re: SSL Certs (Kenneth Grome 2003)
  24. Re: SSL Certs (Bob Minor 2003)
  25. Re: SSL Certs (Michael Davis 2003)
  26. Re: SSL Certs (Kenneth Grome 2003)
  27. Re: SSL Certs (Donovan home EHG 2003)
  28. SSL Certs (Michael Davis 2003)
>I've had a cert from Thawte for several years. I understand how >that works. What I am not sure of is the self-signed cert business. >Can I run a secure server with a self signed cert? Well, I know I >can, but what happens on the visitor's end? I assume they get a >warning message of some kind?Correct. >I assume that if they accept the message, that the connection is >encrypted and as secure as any other SSL connection using a third >party verifier such as Verisign, TuCows, or Thawte (not that the >merchant is guaranteed reputable, just that the connection is as >secure). Am I close?Yes. >What roadblocks stand in the way of one person's providing a secure >connection to their server visitors and another person who wants to >visit that site securely?The warning message, and the requirement that the visitor must click past this message to begin the SSL session, and of course the ability of the browser to do SSL. >Is it all a matter of the verification and assurance process that >the Verisigns of the world provide?If the visitor's browser recognizes the verifier's certificate as valid, the visitor doesn't get the warning message. If it doesn't, most browsers can install any certificate authority if the visitor requests it, after which the warning message will no longer appear. >Is there anything more that keeps secure connections from being >commonplace and freely establish-able from the web hosting >perspective?Not sure what you mean here ... -- Sincerely, Kenneth Grome ------------------------------------------------------------- My programmers will write WebDNA code for you at $27 an hour! -------------------------------------------------------------------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Taxable Shipping (2003) WebCatalog Use Question (1997) Summing fields (1997) WebCommerce: Folder organization ? (1997) In Digest Dijon (2000) [WebDNA] Sorting questions (2009) Forms Search Questions (1997) WebCat2b12--[searchstring] bug (1997) Sitebuilder (2004) RE: creating writefile data from a nested search (1997) TeaRoom Order fields email account remain empty even though thewy are filled. (1997) WebCatalog Mac and cgi-bin (WebSTAR 2.0) (1997) math on date? (1997) send mail problem? (1997) popups, netscape vs explorer (1997) [WebDNA] Bug in [thisurlplusget] on v7 (2011) can webcat create directories on NT? (1997) $Replace with [founditems] (1997) Trouble with formula.db + more explanation (1997) Forcing Paragraph Breaks on Results (1998)