> Is Verisign the only company you buy a 128bit certificate > from? $900 per year, per site seems a bit steep.
I've been very happy with Thawte certs: http://www.thawte.com/ However, even the Verisign certs are available for less than $900. The standard cert, Verisign's "Secure Site", is fine for most uses - it supports 128-bit encryption if used with U.S. domestic versions of IE or Netscape, just not with the 40-bit export versions, which a lot of people, even in the U.S., have. In addition, if you're not using the cert for a public site, and you just want encryption without verification that the site is "who it says it is", you can generate your own. There are plenty of tools that let you do this, such as OpenSSL: http://www.openssl.org/ You'll get a message asking "do you want to accept this unverifiable cert from this bozo certification authority", but you can click through it. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ______________________________________________________________________ Signup for the Fusion Authority news alert and keep up with the latest news in ColdFusion and related topics. http://www.fusionauthority.com/signup.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
