[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] self signed certificate warnings

Subject: Re: [cobalt-security] self signed certificate warnings
From: "Up The Blues" <blue@xxxxxxxxxxxxxxxxx>
Date: Wed, 20 Feb 2002 17:57:36 -0000
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

MATT,

Try geotrust. We use geotrust for a single cert. that only costs about $99.

I know they used to offer wildcard certs from about $400.

regards

Lee


----- Original Message -----
From: "Matthew Nuzum" <cobalt@xxxxxxxxxxxxx>
To: "cobalt-security" <cobalt-security@xxxxxxxxxxxxxxx>
Sent: Wednesday, February 20, 2002 3:38 PM
Subject: [cobalt-security] self signed certificate warnings


> I've designed an application that collects some personal information, so
> for the short term, I created a self signed "wildcard" certificate.
> It's 128 bit and Netscape and IE handle it just fine.  I feel very
> comfortable with the level of security it gives me.
>
> The problem is that browser's visiting the site for the first time get a
> pop-up warning stating that they user has not chosen to trust the
> signing authority, or something along those lines.
>
> IE and NS both state that the security is full strength, that the dates
> are valid and that the domain name matches.  They show nice little
> symbols that make users feel pretty comfortable.
>
> While this is fine for most of my clients, I'd like to not have the
> pop-up window appear at all.
>
> I know of ONE way that will take care of this problem definitively, and
> that is to buy a wildcard cert from Thawte.  However, they now charge
> per domain, which is extremely limiting to me.
>
> I have heard that you can send a special mime-encoded file to newer
> browsers that will allow them to add me to their list of trusted
> authorities.  Maybe this is a rumor, or maybe this is a complete
> mis-understanding on my part.  It sounds intriguing to me though.
>
> Has anyone tried this?  I'd search the Internet, but I'm somewhat at a
> loss for what to even search for.
>
> I tried to find CAs that will provide wildcard certs, but none of the
> cheap ones seem to do it.  If you can recommend a low cost CA that is
> trusted by newer browsers and has a low, flat fee for wildcards, I would
> find that useful as well.
>
> Thanks for any help,
> Matt Nuzum
>
> _______________________________________________
> cobalt-security mailing list
> cobalt-security@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-security
>

References:
- [cobalt-security] self signed certificate warnings
  - From: Matthew Nuzum

Prev by Date: Re: [cobalt-security] self signed certificate warnings
Next by Date: Re: [cobalt-security] self signed certificate warnings
Previous by thread: Re: [cobalt-security] self signed certificate warnings
Next by thread: Re: [cobalt-security] self signed certificate warnings

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index