-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Saturday 20 March 2004 19:16, Bill Royds wrote: > So the value of signing your messages �doesn't really scale. > That is why S/MIME is used by most commercial MUA's. Even though you have > to pay for the certificate, you can pretty well guarantee that the public > key will be available when one needs to verify the message.
You don't have to pay for the certificate to use S/MIME. You don't have to be self-signed for free x.509 personal certs. I have been using the Comodo issued, InstantSSL certs for S/MIME and document encryption/verification. There has never been a hitch in validating the certification path. Thawte has free personal certificates as well. They used to implement a strange "web of trust", where you could visit a notary to validate your identity. PITY. IPSCA has free personal certs too. No experience with them, but they are in the Mozilla/IE root cert stores. http://www.instantssl.com/ssl-certificate-products/free-email-certificate.html?currency=USD®ion=North% 20America https://www.thawte.com/cgi/enroll/personal/step1.exe http://certs.ipsca.com/Products/SMIME.asp -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFAXbtDJi2cv3XsiSARAoE7AJ4j0TP39meu1TfR3VIcDZyM3USnBwCg+xu0 ASbi1i8T0gGo4Wo0msdJMiw= =pA7r -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
