On Wed, 18 Aug 2004, David Brodbeck wrote:
On Tue, 17 Aug 2004 20:48:57 -0400, guy wrote
If what you say is true....Cool! And free!
I must take a look and see.
The problem with cacert and the like is they aren't trusted by default by web
browsers, like Verisign is. From the standpoint of a typical web user, that
means a cecert-signed certificate is no better than a self-signed certificate.
For the typical Windows web user, if your web site says "click here and
press ok on the dialog" - they'll do it. Just like with the virus
emails. As a community service, you could try and explain exactly what
they are clicking "OK" to (that cacert.org is as good or better than
Verisign at vouching for identity).
--
Stuart D. Gathman <stuart(_at_)bmsi(_dot_)com>
Business Management Systems Inc. Phone: 703 591-0911 Fax: 703 591-6154
"Confutatis maledictis, flamis acribus addictis" - background song for
a Microsoft sponsored "Where do you want to go from here?" commercial.