Jean-Marc Desperrier wrote: > Could you have a visible page on the site explaining such things, and > what your architecture is ? I know I could hardly trust you before I > have some idea of what your architecture/procedures are and I did not > see such a thing on the site.
How much faith do you place in other CAs that don't publish this information, or is it simply assumed they know what they're doing? (PS our draft CPS contains most of this information, we're still in the process of finalising it) > But you have the advantage over some more well know CA that the client > will not randomly have the required intermediate certs already > installed, so the admin of the web server will probably see instantly > that his config is wrong, and pay some more attention to the config page. My concern here is more for client certificates which we actually issue more of... -- Best regards, Duane http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers "In the long run the pessimist may be proved right, but the optimist has a better time on the trip." _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
