[Info-vax] [OT] Zero trust software, was: Re: Rethinking DECNET ?
Bill Gunshannon
bill at server3.cs.scranton.edu
Wed Sep 3 08:28:47 EDT 2014
In article <lu5dll$7od$1 at dont-email.me>,
David Froble <davef at tsoft-inc.com> writes:
> Bill Gunshannon wrote:
>
>> Remember reading about how VeriSign gave keys to the NSA? I remember
>> asking people over 10 years ago why I, or anyone, should trust their
>> certificates over self-signed ones.
>
> We're using self generated certificates at our customer sites. I don't
> know why, since I don't get along very well with certificates. Also
> don't know why not.
>
> What are the advantages, and disadvantages, of using purchased
> certificates vs the ones you can generate yourself?
The only one I know of is that all the web browsers I have used flag
self-signed certificates as "untrusted" and make users approve them.
I use self-signed certificates here and I certainly trust them a damn
sight more than anything I could have bought from a third-party.
bill
--
Bill Gunshannon | de-moc-ra-cy (di mok' ra see) n. Three wolves
billg999 at cs.scranton.edu | and a sheep voting on what's for dinner.
University of Scranton |
Scranton, Pennsylvania | #include <std.disclaimer.h>
More information about the Info-vax
mailing list