Re: [AFMUG] ssl certs

om/mdwestix> > <https://www.linkedin.com/company/midwest-internet-exchange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXS

Re: [AFMUG] ssl certs

t; <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > -- > *From: *"Eric Kuhnke" <eric.kuh...@gmail.com> > *To: *af@afmug.com > *Sent: *Monday, April 9, 2018 5:27:25 PM > *Subject: *Re: [AFMUG] ssl certs > > The disc

Re: [AFMUG] ssl certs

On 4/9/18 15:19, Mike Hammett wrote: Sounds like a great anti-trust case. Sure, but that's not something I can control and it's probably buried in their terms that you agree to it or whatever and it would take a lot of time and money to try and fight that legally. Or I can turn on HTTPS and

Re: [AFMUG] ssl certs

the job. - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Eric Kuhnke" <eric.kuh...@gmail.com> To: af@afmug.com Sent: Monday, April 9, 2018 5:27:25 PM Subject: Re: [AFMUG] ssl certs

Re: [AFMUG] ssl certs

//www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > -------------- > *From: *"Eric Kuhnke" <eric.kuh...@gmail.com> > *To: *af@afmug.com > *Sent: *Monday, April

Re: [AFMUG] ssl certs

April 9, 2018 5:22:40 PM Subject: Re: [AFMUG] ssl certs Yeah I think I'll skip a 45 minute podcast that seems to have an anti-crypto agenda, and continue reading the IETF mailing lists instead. Standardization and implementation of TLS1.3 will continue onwards even if the techno-luddites igno

Re: [AFMUG] ssl certs

t; > -------------- > *From: *"Eric Kuhnke" <eric.kuh...@gmail.com> > *To: *af@afmug.com > *Sent: *Monday, April 9, 2018 5:14:32 PM > *Subject: *Re: [AFMUG] ssl certs > > The score: > > Podcast with six people I've never heard of: 0 > >

Re: [AFMUG] ssl certs

om Sent: Monday, April 9, 2018 5:14:32 PM Subject: Re: [AFMUG] ssl certs The score: Podcast with six people I've never heard of: 0 Every network security expert currently active in the field: 1 Confidential information aside, having 100% confidence that the content served

Re: [AFMUG] ssl certs

PM Subject: Re: [AFMUG] ssl certs On 4/9/18 15:09, Mike Hammett wrote: > Confidential date, sure. Billing portals, shopping carts, etc. sure. > > The marketing materials on my web site? Why? > Because one day at home after I moved, I tried to go to my own website and Charter

Re: [AFMUG] ssl certs

Internet Exchange The Brothers WISP - Original Message - From: "Eric Kuhnke" <eric.kuh...@gmail.com> To: af@afmug.com Sent: Monday, April 9, 2018 5:14:32 PM Subject: Re: [AFMUG] ssl certs The score: Podcast with six people I've never heard of: 0 Every network

Re: [AFMUG] ssl certs

et-exchange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ---------- > *From: *"Si

Re: [AFMUG] ssl certs

On 4/9/18 15:09, Mike Hammett wrote: Confidential date, sure. Billing portals, shopping carts, etc. sure. The marketing materials on my web site? Why? Because one day at home after I moved, I tried to go to my own website and Charter intercepted the HTTP request to present me with their

Re: [AFMUG] ssl certs

WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ---------- > *From: *"Simon Westlake" <simon@sonar.software> > *To

Re: [AFMUG] ssl certs

OMEONE SAW MY WEB SITE!!! https://www.youtube.com/watch?v=18PbwYdjsps - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP From: "Eric Kuhnke" < eric.kuh...@gmail.com > To: af@afmug.com Sent: Monday, April 9, 2018 4:59:23 PM

Re: [AFMUG] ssl certs

Message - From: "Simon Westlake" <simon@sonar.software> To: af@afmug.com, af@afmug.com Sent: Monday, April 9, 2018 5:06:26 PM Subject: Re: [AFMUG] ssl certs Moving any kind of confidential data in the clear is irresponsible. Moving HTTP traffic across the Internet leaves yo

Re: [AFMUG] ssl certs

ange> > <https://twitter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ------ > *From: *"Eric

Re: [AFMUG] ssl certs

into a terminal to get a valid, automatically renewing certificate. It seems pointless not to when the benefits are tangible. -- Original Message -- From: "Mike Hammett" <af...@ics-il.net> To: af@afmug.com Sent: 4/9/2018 5:02:29 PM Subject: Re: [AFMUG] ssl certs

Re: [AFMUG] ssl certs

Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Eric Kuhnke" <eric.kuh...@gmail.com> To: af@afmug.com Sent: Monday, April 9, 2018 4:59:23 PM Subject: Re: [AFMUG] ssl certs I offer a directly contradicting opin

Re: [AFMUG] ssl certs

ter.com/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ------------------ > *From: *"Eric Kuhnke" <eric.kuh...@gmail

Re: [AFMUG] ssl certs

t: Monday, April 9, 2018 4:54:05 PM Subject: Re: [AFMUG] ssl certs What's hard about doing TLS1.2 everywhere? Every web browser shipped or updated from mid-2012 onwards supports 1.2. The population of browsers that only support TLS1.0 and 1.1 is less than 1% now by most measurements of usera

Re: [AFMUG] ssl certs

To: af@afmug.com Sent: Monday, April 9, 2018 4:51:04 PM Subject: Re: [AFMUG] ssl certs "You should have https (TLS1.2) everywhere, on every sort of public facing httpd these days, with at least a letsencrypt certificate." We'll eventually have to because Google, etc. will m

Re: [AFMUG] ssl certs

om/mdwestix> > The Brothers WISP <http://www.thebrotherswisp.com/> > <https://www.facebook.com/thebrotherswisp> > > > <https://www.youtube.com/channel/UCXSdfxQv7SpoRQYNyLwntZg> > ---------- > *From: *"Eric Kuhnke" <eric.kuh...@gmail.c

Re: [AFMUG] ssl certs

" <eric.kuh...@gmail.com> > To: af@afmug.com > Sent: 4/9/2018 3:03:38 PM > Subject: Re: [AFMUG] ssl certs > > these days there are essentially two types of SSL cert, DV and EV > > DV = domain validated. anyone can get one. this is the same idea for the > $9 SSL certs an

Re: [AFMUG] ssl certs

ke Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Eric Kuhnke" <eric.kuh...@gmail.com> To: af@afmug.com Sent: Monday, April 9, 2018 4:49:01 PM Subject: Re: [AFMUG] ssl certs I have seen stud

Re: [AFMUG] ssl certs

en them used heavily is in the financial sector, and > I'd guess that's more about CYA than technical value. > > -- Original Message -- > From: "Eric Kuhnke" <eric.kuh...@gmail.com> > To: af@afmug.com > Sent: 4/9/2018 3:03:38 PM > Subject: Re: [AFMUG] ss

Re: [AFMUG] ssl certs

t: 4/9/2018 3:03:38 PM Subject: Re: [AFMUG] ssl certs these days there are essentially two types of SSL cert, DV and EV DV = domain validated. anyone can get one. this is the same idea for the $9 SSL certs and free letsencrypt. you only need to prove you control the domain/server it's

Re: [AFMUG] ssl certs

Good info, Eric. AFAIK, you cannot EV and wildcard...Just something to consider. I'm not a fan of wildcards anyway, but a few subject alt names can be handy. Plan ahead! --dan On 4/9/2018 3:03 PM, Eric Kuhnke wrote: these days there are essentially two types of SSL cert, DV and EV DV =

Re: [AFMUG] ssl certs

these days there are essentially two types of SSL cert, DV and EV DV = domain validated. anyone can get one. this is the same idea for the $9 SSL certs and free letsencrypt. you only need to prove you control the domain/server it's issued for. EV = extended validation, you need to prove your

Re: [AFMUG] ssl certs

. I'd pay more to have it renew all by itself, but I don't think that's an option. -Adam -- Original Message -- From: "Steve Jones" <thatoneguyst...@gmail.com> To: af@afmug.com Sent: 4/9/2018 2:59:57 PM Subject: Re: [AFMUG] ssl certs tbh, im not really looking for alterna

Re: [AFMUG] ssl certs

than going through the GoDaddy process. -- Original Message -- From: "Steve Jones" <thatoneguyst...@gmail.com> To: af@afmug.com Sent: 4/9/2018 1:02:39 PM Subject: Re: [AFMUG] ssl certs Im no webdude is the main reason. I know alot of people use it, phishermen love them.

Re: [AFMUG] ssl certs

tbh, im not really looking for alternative sources, im asking advice on what i need in a certificate On Mon, Apr 9, 2018 at 1:52 PM, Cameron Crum wrote: > ssls.com > > On Mon, Apr 9, 2018 at 1:02 PM, Steve Jones > wrote: > >> Im no webdude is the

Re: [AFMUG] ssl certs

ssls.com On Mon, Apr 9, 2018 at 1:02 PM, Steve Jones wrote: > Im no webdude is the main reason. I know alot of people use it, phishermen > love them. Theyre "trusted, but not verified" which, to no webdude me, says > "IT WILL BECOME UNTRUSTED". I hate godaddy, but

Re: [AFMUG] ssl certs

Im no webdude is the main reason. I know alot of people use it, phishermen love them. Theyre "trusted, but not verified" which, to no webdude me, says "IT WILL BECOME UNTRUSTED". I hate godaddy, but theyre not likely to become untrusted, so its not something id have to deal with with little to no

Re: [AFMUG] ssl certs

Domain validation is usually cheaper. Nobody's complained about it yet. I have one wildcard cert on POP/SMTP server, webmail, website, customer portal, etc. The only problem is when you forget to pay for it they're all broken at the same time lol. -- Original Message -- From:

Re: [AFMUG] ssl certs

Can you use Let's Encrypt? - Mike Hammett Intelligent Computing Solutions Midwest Internet Exchange The Brothers WISP - Original Message - From: "Steve Jones" To: af@afmug.com Sent: Monday, April 9, 2018 12:07:04 PM Subject: [AFMUG] ssl