On Fri, May 23, 2008 at 6:20 AM, John Summerfield <[EMAIL PROTECTED]> wrote:
> If I created a self-signed certificate for example.com, it would not be > to provide my identity to the public at large, but for use within a > small group. Not everyone needs _that_ level of security. Sure, context. If you sit in the broom closet and just show your hand-written driver license to yourself to practice the movements or rituals, sure... Useful when you want to learn things or do experiments. I know of at least one CA that provides *free* certificates (that expire in a month) for experimenting. That might be more appropriate than training folks to click "Yes" to accept self-signed certificates. Wonder what they will do when you present them a new CA to import into their browser... OT: Recently my bank required me to visit their office and present a valid ID in person during office hours, just to cancel an empty savings account. Does not work well in a 24x7 environment. I decided I cannot be bothered and will just let it sit gathering dust... I find it interesting to see how online identification is done. Already seen a few cases where access to a bank account (to read some digits of the account statement) or a mobile phone were used as components in the process. Rob ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
