SSL certificate management/storage
Iago Rubio
iago.rubio at hispalinux.es
Sat Feb 5 09:44:58 UTC 2005
On Sat, 2005-02-05 at 00:33, Nalin Dahyabhai wrote:
> On Fri, Feb 04, 2005 at 04:25:12PM +0000, Joe Orton wrote:
> > 3. increasing number of daemon packages are creating self-signed
> > certs in %post scripts; could/should this be unified?
[snip]
> Those self-signed certificiates are becoming less and less useful as
> applications move toward properly verifying certificates.
Could be a problem to assume this, as self-signed certificates does not
require a CA - that'll pick some bucks from you to sign your
certificates - and it's sure self-signed certificates will be hanging
around for a while, because they're cheaper than CA signed ones.
Even in web servers self-signed certificates are being deployed, despite
the browser certificate error dialogs that are show when you visit those
web sites.
Regards.
--
Iago Rubio
More information about the fedora-devel-list
mailing list