[thelist] SSL Certificate Choices

Mark Groen evolt at markgroen.com
Sat Jan 26 19:43:29 CST 2008


On January 26, 2008 2:09:04 pm Robert Gormley wrote:
> That seems odd. Are you saying that if the entire chain is on the
> server, up to and including a root certificate, the browser will not
> prompt for the use of an untrusted root cert? That seems both odd, and
> an utterly huge security hole...

No security hole there, it is still an SSL connection regardless if the cert 
is a free self-signed one or not. The only difference is the the signing 
authority is yourself instead of Verisign (for example).
--
cheers,

	Mark

	www.mgwebservices.ca



More information about the thelist mailing list