nanog mailing list archives
Re: SSL Certificates
From: George Herbert <george.herbert () gmail com>
Date: Wed, 15 Feb 2012 16:49:53 -0800
On Wed, Feb 15, 2012 at 4:17 PM, John Levine <johnl () iecc com> wrote:
Almost everyone are basically just selling an "activation" with one of the SSL certificate authorities. I usually buy a "RapidSSL" (Verisign) certificate from https://www.sslmatrix.com/ -- they seem to have some of the best prices and the rapidssl enrollment process is very efficient (at least for the cheap automatically "validated" products).I get my RapidSSL and Comodo from these guys. Prices look about the same: http://www.cheapssls.com/ If you order a cert for example.com, Comodo's also work for www.example.com, no extra charge.
The problem with anything related to Verisign at the moment is that they either don't know or haven't come clean yet how far the hackers got into their infrastructure over the last few years. The early February 2012 announcements were woefully devoid of actual content. The possibility of their root certs being compromised is nonzero. There may be no problem; they also may be completely worthless. Until there's full disclosure... -- -george william herbert george.herbert () gmail com
Current thread:
- Re: SSL Certificates Ask Bjørn Hansen (Feb 15)
- Re: SSL Certificates John Levine (Feb 15)
- Re: SSL Certificates George Herbert (Feb 15)
- Re: SSL Certificates Jimmy Hess (Feb 15)
- Re: SSL Certificates John R. Levine (Feb 16)
- Re: SSL Certificates Christopher Morrow (Feb 16)
- Re: SSL Certificates John R. Levine (Feb 16)
- Re: SSL Certificates Jeroen Massar (Feb 16)
- Re: SSL Certificates startssl.com James Triplett (Feb 16)
- Re: SSL Certificates George Herbert (Feb 15)
- Re: SSL Certificates Leo Bicknell (Feb 16)
- Re: SSL Certificates John Levine (Feb 16)
- Re: SSL Certificates John Levine (Feb 15)
- Re: SSL Certificates George Herbert (Feb 16)