On Sep 8, 7:24 am, Christian Fazzini <[email protected]> wrote: > Hello anyone used OpenSSL before? > > Why do we need to pay for expensive SSL certs when there is OpenSSL > which is provided free? Is there a difference? > > I've got an ecommerce website, and wondering if OpenSSL is enough? > > Your thoughts will be appreciated
Openssl is a library for performing various encryption tasks, so (other than the fact that it can manipulate them) it hasn't got much to do with ssl certs. The problem with a self signed cert (which openssl can generate for you) or something like a cacert is that most users won't have the root certificate on their machine so will see a 'untrusted certificate' warning when they visit your site (and of course this also means that you're open to a man in the middle type attack) Fred -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.
