Re: [Half OOT] The Cons of Using Self-Signed Certificate

To: debian-user@lists.debian.org
Subject: Re: [Half OOT] The Cons of Using Self-Signed Certificate
From: "Jesús M. Navarro" <jesus.navarro@undominio.net>
Date: Sat, 12 Sep 2009 11:31:02 +0200
Message-id: <[🔎] 200909121131.02495.jesus.navarro@undominio.net>
In-reply-to: <[🔎] 20090911090305.GC6597@tamay-dogan.net>
References: <[🔎] b30f17480909102306x205b729cg218a9b693ec8ff67@mail.gmail.com> <[🔎] 20090911090305.GC6597@tamay-dogan.net>

Hi, Michelle:

On Friday 11 September 2009 11:03:05 Michelle Konzack wrote:
[...]

> For one of my enterprises I have installed my OWN  CA  and  on  the  160
> servers (apache, courier, and postgresql) I installed only certs  signed
> by my own CA.  So, I have now certs which I 100% can trust.

That's just half the equation and in the case of public services not even the 
important half: you may be trusting your own certs, but are the ones that 
will use them going to trust them as well?  A certificate in a server is not 
meant to build trust on the owner of the server but on those that use the 
server.

I.E.:  I'll trust this site is in fact Bank Of America because so says 
Verisign.  Contrast it with "...because so says Michelle Konzack".

Ps: Did you manage to get your systems on-line?  It seems my previous email 
was spooled at webmail.codefoundry.com.

Reply to:

Follow-Ups:
- Re: [Half OOT] The Cons of Using Self-Signed Certificate
  - From: Michelle Konzack <linux4michelle@tamay-dogan.net>

References:
- [Half OOT] The Cons of Using Self-Signed Certificate
  - From: Zaki Akhmad <zakiakhmad@gmail.com>
- Re: [Half OOT] The Cons of Using Self-Signed Certificate
  - From: Michelle Konzack <linux4michelle@tamay-dogan.net>

Prev by Date: Re: Lenny RAID+LVM Lilo/Grub Error
Next by Date: Re: [Half OOT] The Cons of Using Self-Signed Certificate
Previous by thread: Re: [Half OOT] The Cons of Using Self-Signed Certificate
Next by thread: Re: [Half OOT] The Cons of Using Self-Signed Certificate
Index(es):
- Date
- Thread