SSL certificate management/storage

Iago Rubio iago.rubio at
Sat Feb 5 09:44:58 UTC 2005

On Sat, 2005-02-05 at 00:33, Nalin Dahyabhai wrote:
> On Fri, Feb 04, 2005 at 04:25:12PM +0000, Joe Orton wrote:
> > 3. increasing number of daemon packages are creating self-signed
> > certs in %post scripts; could/should this be unified?


> Those self-signed certificiates are becoming less and less useful as
> applications move toward properly verifying certificates. 

Could be a problem to assume this, as self-signed certificates does not
require a CA - that'll pick some bucks from you to sign your
certificates - and it's sure self-signed certificates will be hanging
around for a while, because they're cheaper than CA signed ones.

Even in web servers self-signed certificates are being deployed, despite
the browser certificate error dialogs that are show when you visit those
web sites.

Iago Rubio

More information about the fedora-devel-list mailing list