Mailinglist Archive: opensuse (3139 mails)
| < Previous | Next > |
Re: [SLE] recommend a SSL sertificate issuer for our website?
- From: ken <gebser@xxxxxxxxxxxxx>
- Date: Tue, 3 Oct 2006 17:41:18 +0000 (UTC)
- Message-id: <4522A0A3.8060401@xxxxxxxxxxxxx>
Greg Freemyer wrote:
> On 9/30/06, ken <gebser@xxxxxxxxxxxxx> wrote:
>> 张�|武 wrote:
>> > ....
>> >
>> > Now our go daddy SSL certificate is expiring (no surprising we
>> choose go
>> > daddy the first time: because they made more advertisements), I wish to
>> > take this chance to use another certificate issuer. We need cheap
>> > Intranet level certificate, from a certificate issuer that is more
>> > Linux-friendly. Which certificate issuer Linux admins prefer? For me
>> not
>> > necessarily a USA company.
>> >
>> > In my case we cannot use CACert.org.
>>
>> If it's just for an intranet server, you can create your own certificate
>> using apache.
>>
>
> If you do that, then your Intranet users will need to accept your
> machine as a signing authority. Not a big deal if it is just a few
> users. If you have a few hundred users on your intranet, it is
> probably easier to get the cert from a pre-authorized signing
> authority.
Or you could send out a company-wide (email) memo.
>
> ....
--
In a time of universal deceit, telling the truth becomes an act of
rebellion.
--George Orwell
> On 9/30/06, ken <gebser@xxxxxxxxxxxxx> wrote:
>> 张�|武 wrote:
>> > ....
>> >
>> > Now our go daddy SSL certificate is expiring (no surprising we
>> choose go
>> > daddy the first time: because they made more advertisements), I wish to
>> > take this chance to use another certificate issuer. We need cheap
>> > Intranet level certificate, from a certificate issuer that is more
>> > Linux-friendly. Which certificate issuer Linux admins prefer? For me
>> not
>> > necessarily a USA company.
>> >
>> > In my case we cannot use CACert.org.
>>
>> If it's just for an intranet server, you can create your own certificate
>> using apache.
>>
>
> If you do that, then your Intranet users will need to accept your
> machine as a signing authority. Not a big deal if it is just a few
> users. If you have a few hundred users on your intranet, it is
> probably easier to get the cert from a pre-authorized signing
> authority.
Or you could send out a company-wide (email) memo.
>
> ....
--
In a time of universal deceit, telling the truth becomes an act of
rebellion.
--George Orwell
| < Previous | Next > |