Security Basics mailing list archives

Re: Expired certificates

From: anthonylai () owasp org
Date: 28 Apr 2006 04:23:07 -0000

It readily depends on what type of server and server you will provide. If it does not get into any sales transaction 
and sensitive informations,
if protection and identity verification is mandatory in your service. The certificate should be renewed in advance.

In fact, removing the certificate is not readily a big deal. However, it is very "interesting" your team members keeps 
something expired, unused or even allow people to work on identity tricks/spoofing.

-------------------------------------------------------------------------
This List Sponsored by: Webroot

Don't leave your confidential company and customer records un-protected. 
Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no 
obligation. See why so many companies trust Spy Sweeper Enterprise to 
eradicate spyware from their networks.
FREE 30-Day Trial of Spy Sweeper Enterprise

http://www.webroot.com/forms/enterprise_lead.php
--------------------------------------------------------------------------

Current thread:

Expired certificates 1tgeye (Apr 26)
- Re: Expired certificates James Fryman (Apr 28)
- Re: Expired certificates Brooks Garrett (Apr 28)
- Re: Expired certificates Kenton Smith (Apr 28)
- <Possible follow-ups>
- Re: Expired certificates vachanta (Apr 28)
- RE: Expired certificates Steve Armstrong (Apr 28)
- Re: Expired certificates edward . luck (Apr 28)
- Re: Expired certificates anthonylai (Apr 28)
- Re: Expired certificates wojtekp (Apr 28)