Free SSL Certificates

theparrot · 08-28-2004, 12:35 AM

Do you want to offer https but not have to pay the yearly fees?

Do you want still want a certificate that is at least not self signed?

You can get free certificates for https, as well as other things (secure email for example, or digital code signing) at http://cacert.org/

theparrot · 08-30-2004, 02:29 PM

Hmm.. I am a bit suprised no one posted any response to this. I guess this is not the type of thing people are interested in here?

DSL · 08-30-2004, 02:30 PM

How is this free ssl?

peaudecastor · 08-30-2004, 03:37 PM

Quote:

Welcome to CAcert, the community non-profit Certificate Authority. If you are looking to have your web browser trust our certificates, please install our root certificate.

This is not a trusted root.

theparrot · 08-30-2004, 05:54 PM

Originally Posted by DSL

How is this free ssl?

How is it not?

Crusader · 08-30-2004, 06:28 PM

How exactly does it work?

theparrot · 08-30-2004, 06:31 PM

Originally Posted by DotsAvenue

This is not a trusted root.

Well, one question to ask is, so? (Though in reality it is an issue.)
????: NamePros.com http://www.namepros.com/web-hosting-discussion/45298-free-ssl-certificates.html

Also though, it can be. You just have to install it. That means a click on a link. Even without that being done, it still will encrypt the data when it is used. What it is not is in the default list of roots in IE or Mozilla etc. yet. It is a catch-22, and politics are involved.

First you have to ask yourself what is a 'trusted root' and what makes it trusted? Even what is the purpose of SSL and/or a CA. Did you know at least a couple of years ago you could easily by the root certificates of a number of firms that where already preinstalled in IE and Netscape?

They actually seem to do more to ensure the validity of a named certificate then many for pay places do at times.

some links for thought:

http://www.onlamp.com/pub/wlg/5142
http://www.schneier.com/crypto-gram-0104.html#7
http://bugzilla.mozilla.org/show_bug.cgi?id=215243

I like the idea, had it myself a few years ago, but no time to persue it. I am not sure CAcert is the right org. to pull it off, but I find it interesting none the less.

I think I am going to get a cert. or two from them and see how it goes.

peaudecastor · 08-30-2004, 07:04 PM

Originally Posted by theparrot

Well, one question to ask is, so? (Though in reality it is an issue.)

Also though, it can be. You just have to install it. That means a click on a link. Even without that being done, it still will encrypt the data when it is used. What it is not is in the default list of roots in IE or Mozilla etc. yet. It is a catch-22, and politics are involved.

First you have to ask yourself what is a 'trusted root' and what makes it trusted? Even what is the purpose of SSL and/or a CA. Did you know at least a couple of years ago you could easily by the root certificates of a number of firms that where already preinstalled in IE and Netscape?

They actually seem to do more to ensure the validity of a named certificate then many for pay places do at times.

some links for thought:

http://www.onlamp.com/pub/wlg/5142
http://www.schneier.com/crypto-gram-0104.html#7
http://bugzilla.mozilla.org/show_bug.cgi?id=215243
????: NamePros.com http://www.namepros.com/showthread.php?t=45298

I like the idea, had it myself a few years ago, but no time to persue it. I am not sure CAcert is the right org. to pull it off, but I find it interesting none the less.

I think I am going to get a cert. or two from them and see how it goes.

I understand what you mean. But the bottom line is that a certificates that request to be installed isnt good enough for me.

Thanks anyway, I may look into it for some of my mail server.

Cheers,

Matt

08-28-2004, 12:35 AM	THREAD STARTER #1 (permalink)
theparrot NamePros Regular Join Date: Mar 2004 Posts: 633	Free SSL Certificates Do you want to offer https but not have to pay the yearly fees? Do you want still want a certificate that is at least not self signed? You can get free certificates for https, as well as other things (secure email for example, or digital code signing) at http://cacert.org/ __________________ Need a break? Check out TheDamnBlog.com Free $6.95 directi accounts at Directi Name Bin Instant free $8.95 eNom accounts at Dncube.com Last edited by theparrot; 08-28-2004 at 12:42 AM.

08-30-2004, 02:29 PM	THREAD STARTER #2 (permalink)
theparrot NamePros Regular Join Date: Mar 2004 Posts: 633	Hmm.. I am a bit suprised no one posted any response to this. I guess this is not the type of thing people are interested in here? __________________ Need a break? Check out TheDamnBlog.com Free $6.95 directi accounts at Directi Name Bin Instant free $8.95 eNom accounts at Dncube.com

08-30-2004, 06:28 PM	#6 (permalink)
Crusader Senior Member Join Date: Aug 2003 Location: Canada Posts: 1,257	How exactly does it work? __________________ Near Fantastica \| Matthew Good - Vancouver TS Design Group - Vancouver, BC based Graphic Design >> Do you Frawlik? <<

08-30-2004, 02:30 PM	#3 (permalink)
DSL Senior Member Join Date: Jun 2003 Posts: 2,115	How is this free ssl?

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)