From owner-freebsd-chat  Tue Oct 22  9: 4:17 2002
Delivered-To: freebsd-chat@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2B9E337B401
	for <freebsd-chat@FreeBSD.ORG>; Tue, 22 Oct 2002 09:04:16 -0700 (PDT)
Received: from smtp.comcast.net (smtp.comcast.net [24.153.64.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id C541D43E65
	for <freebsd-chat@FreeBSD.ORG>; Tue, 22 Oct 2002 09:04:15 -0700 (PDT)
	(envelope-from lomifeh@earthlink.net)
Received: from earthlink.net
 (bgp586692bgs.jdover01.nj.comcast.net [68.39.202.147])
 by mtaout06.icomcast.net
 (iPlanet Messaging Server 5.1 HotFix 1.4 (built Aug  5 2002))
 with ESMTP id <0H4E00BN74N3NB@mtaout06.icomcast.net> for
 freebsd-chat@FreeBSD.ORG; Tue, 22 Oct 2002 12:04:15 -0400 (EDT)
Date: Tue, 22 Oct 2002 12:04:15 -0400
From: Larry Sica <lomifeh@earthlink.net>
Subject: Re: Verisign, Thawte, Entrust, whom?
In-reply-to: <4.3.2.7.2.20021021195034.02b20c70@localhost>
To: Brett Glass <brett@lariat.org>
Cc: "Kevin D. Kinsey, DaleCo, S.P." <kdk@daleco.biz>,
	ulf@Alameda.net, freebsd-chat@FreeBSD.ORG
Message-id: <E9E27806-E5D7-11D6-ABF5-000393A335A2@earthlink.net>
MIME-version: 1.0
X-Mailer: Apple Mail (2.546)
Content-type: text/plain; charset=US-ASCII; format=flowed
Content-transfer-encoding: 7BIT
Sender: owner-freebsd-chat@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-chat.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-chat>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-chat>
X-Loop: FreeBSD.org


On Monday, October 21, 2002, at 09:53 PM, Brett Glass wrote:

> At 03:24 PM 10/21/2002, Kevin D. Kinsey, DaleCo, S.P. wrote:
>
>> Ulf, I happened to google far enough to hit
>> "GeoTrust," and will be looking hard at
>> that ... less than half of VeriSign...that is,
>> unless I can figure out what Brett DOES
>> do in this regard... :-)
>
> Well, it's hard to imagine that having a certificate
> from Verisign would engender any real trust. After
> all, they're a would-be monopolist, are under
> investigation for mail fraud, and have ripped off
> tens of thousands of domain name registrants for
> years.
>

Ok, what about all the other SSL cert providers?  When Ma Bell was 
found to be a monopoly did you stop using the phone?

> We just warn users that a window will pop up, and
> tell them that by accepting our certificate they'll
> be assured of secure communications with us in the
> future. It works.
>

Doesn't this kind of defeat the purpose to a degree of using 
certificates.  One wants a third party CA so people will be able to 
trust your site.  Personally if I get that warning I won't use the site 
because I do not know if they are who they say they are.

To get a cert you need proof that your company is who it says it is and 
that is it a legal company.  It is not just some schlep saying I want 
to buy one.


--Larry


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message