[thelist] SSL Certificate Choices
Mark Groen
evolt at markgroen.com
Sat Jan 26 19:43:29 CST 2008
On January 26, 2008 2:09:04 pm Robert Gormley wrote:
> That seems odd. Are you saying that if the entire chain is on the
> server, up to and including a root certificate, the browser will not
> prompt for the use of an untrusted root cert? That seems both odd, and
> an utterly huge security hole...
No security hole there, it is still an SSL connection regardless if the cert
is a free self-signed one or not. The only difference is the the signing
authority is yourself instead of Verisign (for example).
--
cheers,
Mark
www.mgwebservices.ca
More information about the thelist
mailing list