-----Original Message----- Jay wrote > also your browser should not present you with any warnings about the > certificate. bob wrote > Just because a CA can afford the big >bucks to have the certificates bundled in the major browsers doesn't >make them any more trustworthy than those CAs that can't afford the >bundling costs. Hi, To take this one step further; just because a secure certificate comes from a registered CA does NOT make it any "stronger" or more trustworthy than a certificate created at "at home" using open SSL (www.openssl.org / www.modssl.org) or even Microsoft certificate services. What you are paying for in those certificates is the BELIEF that the issuing CA do the due diligence necessary to verify that the company applying for the cert is who they say they are. From my experience they fall sadly short. Unfortunately the general public are led to believe that if the browser spews out a warning there is necessarily a problem. This is purely commercial propaganda to ensure people continue to pay big dollars to buy certificates. The strength of the encryption in "home rolled" certs is just as strong as the commercial ones and the extra level of trust added by the commercial CA is a fabrication. Sidd. --- You are currently subscribed to e-gold-list as: [email protected] To unsubscribe send a blank email to [EMAIL PROTECTED]
