[nycbug-talk] cacert and ssl crt's

George Georgalis george
Wed Nov 2 21:09:50 EST 2005


On Wed, Nov 02, 2005 at 07:06:32PM -0500, Francisco Reyes wrote:
>
>Any members or the NYCBUG are able to certify others?
>

anybody can setup a CA and sign certs saying they are who they say they are.
the hard part is getting them to sign your cert sign request, which says
they certify your cert as being authentic.

so, who do you want me to say I am? as long as it's someone other than myself,
I'll sign that you are whoever you want to be.

there is actually a bit of sense there. the only value signed certs have is
when clients _check_ that they where actually signed by an authority they trust.

// George


-- 
George Georgalis, systems architect, administrator <IXOYE><
http://galis.org/ cell:646-331-2027 mailto:george at galis.org




More information about the talk mailing list